1.92.1. RHBA-2011:1058: m2crypto bug fix update
An updated m2crypto package that fixes various bugs is now available for Red Hat Enterprise Linux 5.
* Prior to this update, the AES_crypt() function did not free a temporary buffer. This caused a memory leak when the function was called repeatedly. This problem has been fixed and the AES_crypt() function now frees memory correctly. (BZ#659881
) * Previously, calling the m.2asn1_INTEGER_get() function resulted in an incorrect numerical value for the serial number due to a data type mismatch. As a consequence, the subscription-manager application displayed an error message about the serial number being less than zero. Serial numbers are now handled correctly and no error message appears. (BZ#703648
All users of m2crypto are advised to upgrade to this updated package, which resolves these bugs.