-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

##
## Patch description of patch 0b3eaa4aeb3ff70a00380058bb3da906
##

Kind: security

Shortdescription.english:  Security update for CVS

Longdescription.english:

   Applies to

   Package: cvs
   Product(s): SuSE Linux Database Server, SuSE eMail Server
   3.1, SuSE eMail Server III, SuSE Firewall Adminhost VPN,
   SuSE Linux Admin-CD for Firewall, SuSE Firewall on CD 2 -
   VPN, SuSE Firewall on CD 2, SuSE Linux Enterprise Server for
   S/390, SuSE Linux Connectivity Server, SuSE Linux Enterprise
   Server 7 for IA32, SuSE Linux Enterprise Server 7 for IA64,
   SuSE Linux Enterprise Server 7 for PowerPC, SuSE Linux
   Enterprise Server 7 for S/390 and zSeries, SuSE Linux
   Enterprise Server 7 for IBM zSeries, SuSE Linux Enterprise
   Server 8 for x86, SLES 8 for IBM iSeries and IBM pSeries,
   SuSE Linux Enterprise Server 8 for IBM S/390 and IBM
   zSeries, SuSE Linux Enterprise Server 8 for IBM zSeries,
   SuSE Linux Office Server, SuSE Linux Openexchange Server 4,
   UnitedLinux 1.0, SuSE eMail Server II

   Release: 20030117
   Obsoletes: none

  Indications

   Everyone running a public accessible CVS server should
   update.

  Problem description

   A double free bug in CVS server code allows remote system
   compromise for every person that is able to access the
   server.

   Additionally the features Checkin-prog/Update-prog are
   disabled in cvs server due to a decision by SuSE security
   team (security@suse.de).

  Solution

   Please install the updates provided at the location noted
   below.

  Installation notes

   This update is provided as an RPM package that can easily be
   installed onto a running system by using this command:
rpm -Fvh cvs.rpm
Hsilgne.noitpircsedgnol:

Size: 493


MinYaST1Version:
MinYaST2Version:
UpdateOnlyInstalled: true

Packages:
##
## -----> cvs <-----
##
Filename: cvs.rpm
Label: Concurrent Versions System
Series: i586
Size: 892197 505587
PatchRpmBasedOn: 1.11.1p1-229 1.11.1p1-234
PatchRpmSize: 892197 248665
Buildtime: 1043146542
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Development/Tools/Version Control
Copyright: LGPL
AuthorName: 
AuthorAddress:
Version: 1.11.1p1-235
StartCommand:
Obsoletes:
Requires: /bin/sh /usr/bin/perl ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.2.3) libcrypt.so.1 libcrypt.so.1(GLIBC_2.0) rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides:
Segakcap:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE+LoorqE7a6JyACsoRAuSLAKCO8W6wMOSC56Gw/Q55BgcszX/dvgCfTwDr
0J5Gb53cin58NlqqJku33fI=
=Lo/X
-----END PGP SIGNATURE-----