j...@acorntoolworks.com (J.T. Conklin) writes:
> The odd thing is... I've checked to confirm that our packages use ">="
> instead of ">". Since I didn't have a chance to rebuild with symbols, my
> assumption had been that some higher layer code was normalizing "<=" and
> ">=" to the old format, and
Julian Andres Klode writes:
>> The latter conversion may result in a buffer overrun, especially if the
>> header value is close to 1024 bytes in length, as it increases the over-
>> all length of the data being copied.
>
> Not really - only if the Packages file is broken.
Although, we don't want
On Mon, Jun 27, 2016 at 10:19:32PM -0700, J.T. Conklin wrote:
> Package: apt
> Version: 1.0.9.8.3
> Severity: important
>
> Dear Maintainer,
>
> I encountered a stack-smash error in apt-get caused by the contents of
> the "Depends" header of one of my packages. While the crash occurred on
> Ubunt
Package: apt
Version: 1.0.9.8.3
Severity: important
Dear Maintainer,
I encountered a stack-smash error in apt-get caused by the contents of
the "Depends" header of one of my packages. While the crash occurred on
Ubuntu 14.04, the problem is still present in the apt sources as cloned
from git this
4 matches
Mail list logo
