ed-0.2-39.1AXS3
エラータID: AXSA:2008-521:02
Ed is a line-oriented text editor, used to create, display, and modify text files (both interactively and via shell scripts). For most purposes, ed has been replaced in normal usage by full-screen editors (emacs and vi, for example).
Ed was the original UNIX editor, and may be used by some programs. In general, however, you probably don't need to install it and you probably won't use it.
Bugs fixed:
CVE-2008-3916
Heap-based buffer overflow in the strip_escapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted attackers to execute arbitrary code via a long filename.
NOTE: since ed itself does not typically run with special privileges, this issue only crosses privilege boundaries when ed is invoked as a third-party component.
Update packages
Heap-based buffer overflow in the strip_escapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted attackers to execute arbitrary code via a long filename. NOTE: since ed itself does not typically run with special privileges, this issue only crosses privilege boundaries when ed is invoked as a third-party component.
From Asianux Server 3 SP1 updated packages.
SRPMS
- ed-0.2-39.1AXS3.src.rpm
MD5: 05407eb950b9e15c444fed6af19d8f57
SHA-256: c62a94fc90c8df973151e68c920b15656d1d6a66213b7088830da0d67da42c38
Size: 192.93 kB
Asianux Server 3 for x86
- ed-0.2-39.1AXS3.i386.rpm
MD5: 66fc622bd14647f53244d0b4d58beeca
SHA-256: 012fb0504b1f3b907b06c6d6306b6f4d49118dee095118c498ed7cc06ff62143
Size: 52.16 kB
Asianux Server 3 for x86_64
- ed-0.2-39.1AXS3.x86_64.rpm
MD5: 587bed8a462af0d8fd02b26e58d09bdf
SHA-256: b6e9436c88cba4cbe5cb17eedd948cf137c303746644d315d2df5df301cc05af
Size: 55.79 kB