Your message dated Mon, 28 Mar 2005 17:30:19 +0200
with message-id <[EMAIL PROTECTED]>
has caused the Debian Bug report #287038,
regarding CAN-2004-1297 process_font_table overflows name buffer
to be marked as having been forwarded to the upstream software
author(s) [EMAIL PROTECTED], [EMAIL PROTECTED]
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
---------------------------------------
Received: (at 287038-forwarded) by bugs.debian.org; 28 Mar 2005 15:35:20 +0000
>From [EMAIL PROTECTED] Mon Mar 28 07:35:19 2005
Return-path: <[EMAIL PROTECTED]>
Received: from mail1.mclink.it [195.110.128.7]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DFwGt-0001x8-00; Mon, 28 Mar 2005 07:35:19 -0800
Received: from zaphod (adsl203-153-141.mclink.it [213.203.153.141])
by mail1.mclink.it (8.12.6p2/8.12.3) with ESMTP id j2SFZDiX046473;
Mon, 28 Mar 2005 17:35:14 +0200 (CEST)
(envelope-from [EMAIL PROTECTED])
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
by zaphod (Postfix) with ESMTP id 1548E1EE63C;
Mon, 28 Mar 2005 17:30:20 +0200 (CEST)
Subject: [Fwd: Bug#287038: Woody most likely affected as well]
From: Christian Surchi <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Content-Type: text/plain
Date: Mon, 28 Mar 2005 17:30:19 +0200
Message-Id: <[EMAIL PROTECTED]>
Mime-Version: 1.0
X-Mailer: Evolution 2.0.4
Content-Transfer-Encoding: 7bit
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER,
VALID_BTS_CONTROL autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
------- Messaggio inoltrato -------
Da: Helge Kreutzmann <[EMAIL PROTECTED]>
Rispondi-a: Helge Kreutzmann <[EMAIL PROTECTED]>,
[EMAIL PROTECTED]
A: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED], [EMAIL PROTECTED]
Oggetto: Bug#287038: Woody most likely affected as well
Data: Fri, 14 Jan 2005 18:07:16 +0100
reopen 287038
tags 287038 = security, woody
thanks
I just ran a diff on the woody and the Sid version of convert.c as
mentioned in http://tigger.uic.edu/~jlongs2/holes/unrtf.txt
and the relevant routine does not differ. So I assume that unrtf is
vulnerable in woody as well.
If this indeed should not be the case, please add CAN-2004-1297 to
http://www.debian.org/security/nonvulns-woody before closing.
Thanks
Helge
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
