An updated xchat package that fixes a stack buffer overflow in the SOCKSv5
proxy code.
X-Chat is a graphical IRC chat client for the X Window System.
A stack buffer overflow has been fixed in the SOCKSv5 proxy code.
An attacker could create a malicious SOCKSv5 proxy server in such a way
that X-Chat would execute arbitrary code if a victim configured X-Chat to
use the proxy. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0409 to this issue.
Users of X-Chat should upgrade to this erratum package, which contains a
backported security patch, and is not vulnerable to this issue.
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
| Red Hat Desktop (v. 3) |
|
| SRPMS: |
| xchat-2.0.4-4.EL.src.rpm |
24dcd2f613f5d14c1f091cdfc1fdd6ca |
| |
| IA-32: |
| xchat-2.0.4-4.EL.i386.rpm |
431bffb1410d138f3fc7ddf98668654a |
| |
| x86_64: |
| xchat-2.0.4-4.EL.x86_64.rpm |
7398eacb0210d9b66f16c07b389dd173 |
| |
| Red Hat Enterprise Linux AS (v. 2.1) |
|
| SRPMS: |
| xchat-1.8.9-1.21as.2.src.rpm |
6d5775b3f8aad029c4d793850ad886d7 |
| |
| IA-32: |
| xchat-1.8.9-1.21as.2.i386.rpm |
903f03b6faffb88f391484b448c3f637 |
| |
| IA-64: |
| xchat-1.8.9-1.21as.2.ia64.rpm |
39a974df6da586d236283bff42e6bb3e |
| |
| Red Hat Enterprise Linux AS (v. 3) |
|
| SRPMS: |
| xchat-2.0.4-4.EL.src.rpm |
24dcd2f613f5d14c1f091cdfc1fdd6ca |
| |
| IA-32: |
| xchat-2.0.4-4.EL.i386.rpm |
431bffb1410d138f3fc7ddf98668654a |
| |
| IA-64: |
| xchat-2.0.4-4.EL.ia64.rpm |
ad3c4335eacf54f0d1841e07d0168a49 |
| |
| PPC: |
| xchat-2.0.4-4.EL.ppc.rpm |
fd3713f4b7d731c451b7d787857c1a74 |
| |
| s390: |
| xchat-2.0.4-4.EL.s390.rpm |
696feca825d882bd23a594c6016e3fd6 |
| |
| s390x: |
| xchat-2.0.4-4.EL.s390x.rpm |
a6f0191edb52adea9f3ae8dfd9de217c |
| |
| x86_64: |
| xchat-2.0.4-4.EL.x86_64.rpm |
7398eacb0210d9b66f16c07b389dd173 |
| |
| Red Hat Enterprise Linux ES (v. 2.1) |
|
| SRPMS: |
| xchat-1.8.9-1.21as.2.src.rpm |
6d5775b3f8aad029c4d793850ad886d7 |
| |
| IA-32: |
| xchat-1.8.9-1.21as.2.i386.rpm |
903f03b6faffb88f391484b448c3f637 |
| |
| Red Hat Enterprise Linux ES (v. 3) |
|
| SRPMS: |
| xchat-2.0.4-4.EL.src.rpm |
24dcd2f613f5d14c1f091cdfc1fdd6ca |
| |
| IA-32: |
| xchat-2.0.4-4.EL.i386.rpm |
431bffb1410d138f3fc7ddf98668654a |
| |
| IA-64: |
| xchat-2.0.4-4.EL.ia64.rpm |
ad3c4335eacf54f0d1841e07d0168a49 |
| |
| x86_64: |
| xchat-2.0.4-4.EL.x86_64.rpm |
7398eacb0210d9b66f16c07b389dd173 |
| |
| Red Hat Enterprise Linux WS (v. 2.1) |
|
| SRPMS: |
| xchat-1.8.9-1.21as.2.src.rpm |
6d5775b3f8aad029c4d793850ad886d7 |
| |
| IA-32: |
| xchat-1.8.9-1.21as.2.i386.rpm |
903f03b6faffb88f391484b448c3f637 |
| |
| Red Hat Enterprise Linux WS (v. 3) |
|
| SRPMS: |
| xchat-2.0.4-4.EL.src.rpm |
24dcd2f613f5d14c1f091cdfc1fdd6ca |
| |
| IA-32: |
| xchat-2.0.4-4.EL.i386.rpm |
431bffb1410d138f3fc7ddf98668654a |
| |
| IA-64: |
| xchat-2.0.4-4.EL.ia64.rpm |
ad3c4335eacf54f0d1841e07d0168a49 |
| |
| x86_64: |
| xchat-2.0.4-4.EL.x86_64.rpm |
7398eacb0210d9b66f16c07b389dd173 |
| |
| Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor |
|
| SRPMS: |
| xchat-1.8.9-1.21as.2.src.rpm |
6d5775b3f8aad029c4d793850ad886d7 |
| |
| IA-64: |
| xchat-1.8.9-1.21as.2.ia64.rpm |
39a974df6da586d236283bff42e6bb3e |
| |
(The unlinked packages above are only available from the Red Hat Network)
|
121333 - CAN-2004-0409 XChat buffer overflow in socks5 proxy
135238 - CAN-2004-0409 XChat buffer overflow in socks5 proxy
xchat security update