5 matches found
CentOS 4 : slocate (CESA-2005:346)
An updated slocate package that fixes a denial of service and various bugs is available. This update has been rated as having low security impact by the Red Hat Security Response Team. Slocate is a security-enhanced version of locate. Like locate, slocate searches through a central database updat...
RHEL 3 : slocate (RHSA-2005:345)
An updated slocate package that fixes a denial of service and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Slocate is a security-enhanced version of locate. Like locate, slocate searches through a central database...
Fedora Core 4 : slocate-2.7-22.fc4.1 (2005-770)
A carefully prepared directory structure could stop the updatedb file system scan, resulting in an incomplete slocate database. The Common Vulnerabilities and Exposures project has assigned the name CVE-2005-2499 to this issue. Note that Tenable Network Security has extracted the preceding...
CVE-2005-2499
slocate before 2.7 does not properly process very long paths, which allows local users to cause a denial of service updatedb exit and incomplete slocate database via a certain crafted directory structure...
CVE-2005-2499
CVE-2005-2499 affects the slocate package (before version 2.7). A bug in how slocate scans the local filesystem could cause updatedb to fail silently with a crafted directory structure, yielding an incomplete slocate database and enabling a denial of service. The issue was addressed by Red Hat/Ce...