Bug#201750: XLOCALEDIR buffer overflow
Package: xlibs
Version: 4.2.1-9
Severity: grave
Tags: security
The bug described in http://www.securityfocusonline.com/bid/7002 exists in
sid's (presumable sarge, but not woody) xfree libs.
ie:
XLOCALEDIR=`perl -e 'printf "x" x 8000'` xclock
yields segv. Not a huge impact, but needs to be fixed nonetheless.
-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux orthrus 2.4.17 #1 SMP Wed Dec 26 21:36:45 EST 2001 i686
Locale: LANG=C, LC_CTYPE=C
Versions of packages xlibs depends on:
ii libc6 2.3.1-17 GNU C Library: Shared libraries an
ii libfreetype6 2.1.4-4 FreeType 2 font engine, shared lib
ii xfree86-common 4.2.1-9 X Window System (XFree86) infrastr
-- no debconf information
Reply to: