Your message dated Thu, 04 Oct 2007 19:47:09 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#445303: fixed in tk8.3 8.3.5-9
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: tk8.3
Version: 8.3.5-4
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for tk8.3.
CVE-2007-5137[0]:
| Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl
| (Tcl/Tk) before 8.4.16 allows remote attackers to execute arbitrary
| code via multi-frame interlaced GIF files in which later frames are
| smaller than the first.
If you fix this vulnerability please also include the CVE id
in your changelog entry.
Attached is a patch to fix this vulnerability.
For further information:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5137
Kind regards
Nico
--
Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
--- tkImgGIF.c 2002-03-26 03:29:01.000000000 +0100
+++ tkImgGIF.new.c 2007-10-04 20:40:09.000000000 +0200
@@ -960,7 +960,7 @@
/* If interlacing, the next ypos is not just +1 */
if (interlace) {
ypos += interlaceStep[pass];
- while (ypos >= height) {
+ while (ypos >= rows) {
pass++;
if (pass > 3) {
return TCL_OK;
pgp6yeiBGlfYV.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: tk8.3
Source-Version: 8.3.5-9
We believe that the bug you reported is fixed in the latest version of
tk8.3, which is due to be installed in the Debian FTP archive:
tk8.3-dev_8.3.5-9_i386.deb
to pool/main/t/tk8.3/tk8.3-dev_8.3.5-9_i386.deb
tk8.3-doc_8.3.5-9_all.deb
to pool/main/t/tk8.3/tk8.3-doc_8.3.5-9_all.deb
tk8.3_8.3.5-9.diff.gz
to pool/main/t/tk8.3/tk8.3_8.3.5-9.diff.gz
tk8.3_8.3.5-9.dsc
to pool/main/t/tk8.3/tk8.3_8.3.5-9.dsc
tk8.3_8.3.5-9_i386.deb
to pool/main/t/tk8.3/tk8.3_8.3.5-9_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sergei Golovan <[EMAIL PROTECTED]> (supplier of updated tk8.3 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 04 Oct 2007 23:10:10 +0400
Source: tk8.3
Binary: tk8.3-doc tk8.3-dev tk8.3
Architecture: source i386 all
Version: 8.3.5-9
Distribution: unstable
Urgency: high
Maintainer: Tcl/Tk Debian Packagers <[EMAIL PROTECTED]>
Changed-By: Sergei Golovan <[EMAIL PROTECTED]>
Description:
tk8.3 - Tk toolkit for Tcl and X11, v8.3 - run-time files
tk8.3-dev - Tk toolkit for Tcl and X11, v8.3 - development files
tk8.3-doc - Tk toolkit for Tcl and X11, v8.3 - manual pages
Closes: 445303
Changes:
tk8.3 (8.3.5-9) unstable; urgency=high
.
* Applied patch by Nico Golde which fixes security vulnerability
CVE-2007-5137 arbitrary code execution via multi-frame interlaced
GIF (closes: #445303).
Files:
ae110f894825e647121d5cc35c722533 807 libs optional tk8.3_8.3.5-9.dsc
574cca6071e7d33a3c7e725e24f86b0f 31086 libs optional tk8.3_8.3.5-9.diff.gz
681921c77e6acd4b756cc03cfeb4ad12 659506 doc optional tk8.3-doc_8.3.5-9_all.deb
7621a407d0a94bdbbb156a452c9f9554 813510 libs optional tk8.3_8.3.5-9_i386.deb
de422398f1ad0d3270b8286015cf6f82 662822 devel optional
tk8.3-dev_8.3.5-9_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHBUCEIcdH02pGEFIRAjyoAJ9/TMLBXnQqnymRVIBso8ZdMcdjswCfVo/H
enbgAjdF5G36g1vvtdEKryA=
=a8G1
-----END PGP SIGNATURE-----
--- End Message ---
