Kees, thanks for the patch, I have two questions though:
1) Do you think it's a jessie material? 2) Has it been submitted upstream? Cheers, Ondrej On Sat, Feb 7, 2015, at 16:58, Kees Cook wrote: > Package: cyrus-sasl2 > Version: 2.1.26.dfsg1-12 > Severity: normal > Tags: patch > > Under certain conditions (server load? memory pressure?) it was possible > for responses from saslauthd to get lost. The client library sends data > and waits for a response. The server sends a response and immediately > closes the connection without waiting for the connection to flush. The > pending response can get lost (kernel throws it away), leaving the > client to error out with "size read failed". The solution is for the > server to more carefully shut down the socket and wait for the client > to close the connection. > > -Kees > > -- > Kees Cook @debian.org > _______________________________________________ > Pkg-cyrus-sasl2-debian-devel mailing list > pkg-cyrus-sasl2-debian-de...@lists.alioth.debian.org > http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-cyrus-sasl2-debian-devel > Email had 1 attachment: > + early-hangup.patch > 1k (text/x-diff) -- Ondřej Surý <ond...@sury.org> Knot DNS (https://www.knot-dns.cz/) – a high-performance DNS server -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
