Red Hat Product Errata RHBA-2007:0026 - Bug Fix Advisory
Issued:
2007-06-11
Updated:
2007-06-11

RHBA-2007:0026 - Bug Fix Advisory

Synopsis

htdig bug fix update

Type/Severity

Bug Fix Advisory

Topic

An updated htdig package that fix various bugs is now available.

Description

The htdig system is a complete world wide web indexing and searching
system for a small domain or intranet. This system is not meant to replace
the need for powerful internet-wide search systems like Lycos, Infoseek,
Webcrawler and AltaVista. Instead it is meant to cover the search needs for
a single company, campus, or even a particular sub section of a web site. As
opposed to some WAIS-based or web-server based search engines, htdig can
span several web servers at a site. The type of these different web servers
doesn't matter as long as they understand the HTTP 1.0 protocol.
htdig is also used by KDE to search KDE's HTML documentation.

Bugs fixed in this update include:

  • rundig script (/usr/bin/rundig) missed "$opts" on two calls to htfuzzy.
  • htfuzzy segfaulted when database is empty.
  • htdig was unable to open empty database on 64bits.
  • htdig showed full path to configuration file when accessed from the web.

Users should upgrade to this updated package, which resolves these issues.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Affected Products

  • Red Hat Enterprise Linux Server 3 x86_64
  • Red Hat Enterprise Linux Server 3 ia64
  • Red Hat Enterprise Linux Server 3 i386
  • Red Hat Enterprise Linux Workstation 3 x86_64
  • Red Hat Enterprise Linux Workstation 3 ia64
  • Red Hat Enterprise Linux Workstation 3 i386
  • Red Hat Enterprise Linux Desktop 3 x86_64
  • Red Hat Enterprise Linux Desktop 3 i386
  • Red Hat Enterprise Linux for IBM z Systems 3 s390x
  • Red Hat Enterprise Linux for IBM z Systems 3 s390
  • Red Hat Enterprise Linux for Power, big endian 3 ppc

Fixes

  • BZ - 130528 - /usr/bin/rundig is missing "$opts" on two calls to htfuzzy
  • BZ - 133840 - htdig will not run
  • BZ - 218715 - CVE-2000-1191 htdig configuration file path disclosure flaw

References

(none)

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.