Bug#408530: libcapi20-3: buffer overflow in "printbuf" called from capi_cmsg2str

2007-02-18 Thread Ben Hutchings
The same patch is applicable to sarge with trivial adjustment. Ben. -- Ben Hutchings If God had intended Man to program, we'd have been born with serial I/O ports. signature.asc Description: This is a digitally signed message part

Bug#408530: libcapi20-3: buffer overflow in "printbuf" called from capi_cmsg2str

2007-02-17 Thread Ben Hutchings
tags 408530 patch thanks Patch for isdnutils: diff -u isdnutils-3.9.20060704/debian/rules isdnutils-3.9.20060704/debian/rules --- isdnutils-3.9.20060704/debian/rules +++ isdnutils-3.9.20060704/debian/rules @@ -388,6 +388,7 @@ ppp-2.4.4b1 \ vbox-little-endian \ toplevel-mak

Bug#408530: libcapi20-3: buffer overflow in "printbuf" called from capi_cmsg2str

2007-02-17 Thread Ben Hutchings
clone 408530 -1 -2 reassign -1 asterisk-chan-capi retitle -1 asterisk-chan-capi: Need a mutex for calls to capi_{cmsg,message}2str reassign -2 linux-2.6 retitle -2 linux-2.6: capi_{cmsg,message}2str not thread-safe; vulnerable to buffer overflow block -1 with 408530 tags -2 upstream forwarded -2 h

Bug#408530: libcapi20-3: buffer overflow in "printbuf" called from capi_cmsg2str

2007-01-29 Thread Lubomir Kundrak
Hi all, Please notice that the routines in question are also repeated in Linux kernel in drivers/isdn/capi/capiutil.c [1] and in isdn4k-utils in capi20/convert.c [2]. [1] http://chuck.netbsd.sk/source/xref/kernel-2.6.9/linux-2.6.9/drivers/isdn/capi/capiutil.c#838 [2] http://chuck.netbsd.sk/sour

Processed (with 5 errors): Re: Bug#408530: libcapi20-3: buffer overflow in "printbuf" called from capi_cmsg2str

2007-01-26 Thread Debian Bug Tracking System
Processing commands for [EMAIL PROTECTED]: > tags 408530 +security Bug#408530: libcapi20-3: buffer overflow in "printbuf" called from capi_cmsg2str There were no tags set. Tags added: security > severity 408530 grave Bug#408530: libcapi20-3: buffer overflow in "