Red Hat Satellite is a systems management tool for Linux-based
infrastructures. It allows for provisioning, remote management and
monitoring of multiple Linux deployments with a single, centralized tool.
gc is a Boehm-Demers-Weiser conservative garbage collector for C and C++.
It was discovered that gc’s implementation of the malloc() and calloc()
routines did not properly perform parameter sanitization when allocating
memory. If an application using gc did not implement application-level
validity checks for the malloc() and calloc() routines, a remote attacker
could provide specially crafted application-specific input, which, when
processed by the application, could lead to an application crash or,
potentially, arbitrary code execution with the privileges of the user
running the application. (CVE-2012-2673)
Users of Red Hat Satellite 5.6 are advised to upgrade to these updated
packages, which contain a backported patch to correct this issue. For this
update to take effect, Red Hat Satellite must be restarted. Refer to the
Solution section for details.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | src | gc | < 7.1-12.2.el5sat | gc-7.1-12.2.el5sat.src.rpm |
RedHat | 5 | x86_64 | gc | < 7.1-12.2.el5sat | gc-7.1-12.2.el5sat.x86_64.rpm |
RedHat | 5 | s390x | gc | < 7.1-12.2.el5sat | gc-7.1-12.2.el5sat.s390x.rpm |