Bug#430108: marked as done (cdebconf: Off by one error)
Your message dated Wed, 27 Jun 2007 21:17:02 +0000
with message-id <E1I3eso-0000WI-LL@ries.debian.org>
and subject line Bug#430108: fixed in cdebconf 0.117
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: cdebconf
Version: 0.116
Severity: normal
Tags: patch
A read could fill the whole buffer and we put a null-char at the end
of the read data so we could write on a byte just after our buffer.
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.22-rc4-mexhat (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages cdebconf depends on:
ii libatk1.0-0 1.18.0-2 The ATK accessibility toolkit
ii libc6 2.5-11 GNU C Library: Shared libraries
ii libcairo2 1.4.8-1 The Cairo 2D vector graphics libra
ii libdebian-installer4 0.51 Library of common debian-installer
ii libdirectfb-0.9-25 0.9.25.1-6 direct frame buffer graphics - sha
ii libglib2.0-0 2.12.12-1 The GLib library of C routines
ii libgtk-directfb-2.0-0 2.10.13-1 The GTK+ graphical user interface
ii libgtk2.0-0 2.10.13-1 The GTK+ graphical user interface
ii libnewt0.52 0.52.2-10 Not Erik's Windowing Toolkit - tex
ii libpango1.0-0 1.16.4-1 Layout and rendering of internatio
ii libtextwrap1 0.1-5 text-wrapping library with i18n -
cdebconf recommends no packages.
Index: confmodule.c
===================================================================
--- confmodule.c (revision 47280)
+++ confmodule.c (working copy)
@@ -84,7 +84,7 @@
return DC_OK;
}
- ret = read(mod->infd, buf, sizeof(buf));
+ ret = read(mod->infd, buf, sizeof(buf)-1);
if (ret < 0) {
if (errno == EINTR)
continue;
--- End Message ---
--- Begin Message ---
Source: cdebconf
Source-Version: 0.117
We believe that the bug you reported is fixed in the latest version of
cdebconf, which is due to be installed in the Debian FTP archive:
cdebconf-gtk-udeb_0.117_powerpc.udeb
to pool/main/c/cdebconf/cdebconf-gtk-udeb_0.117_powerpc.udeb
cdebconf-newt-udeb_0.117_powerpc.udeb
to pool/main/c/cdebconf/cdebconf-newt-udeb_0.117_powerpc.udeb
cdebconf-priority_0.117_all.udeb
to pool/main/c/cdebconf/cdebconf-priority_0.117_all.udeb
cdebconf-text-udeb_0.117_powerpc.udeb
to pool/main/c/cdebconf/cdebconf-text-udeb_0.117_powerpc.udeb
cdebconf-udeb_0.117_powerpc.udeb
to pool/main/c/cdebconf/cdebconf-udeb_0.117_powerpc.udeb
cdebconf_0.117.dsc
to pool/main/c/cdebconf/cdebconf_0.117.dsc
cdebconf_0.117.tar.gz
to pool/main/c/cdebconf/cdebconf_0.117.tar.gz
cdebconf_0.117_powerpc.deb
to pool/main/c/cdebconf/cdebconf_0.117_powerpc.deb
libdebconfclient0-dev_0.117_powerpc.deb
to pool/main/c/cdebconf/libdebconfclient0-dev_0.117_powerpc.deb
libdebconfclient0-udeb_0.117_powerpc.udeb
to pool/main/c/cdebconf/libdebconfclient0-udeb_0.117_powerpc.udeb
libdebconfclient0_0.117_powerpc.deb
to pool/main/c/cdebconf/libdebconfclient0_0.117_powerpc.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 430108@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Colin Watson <cjwatson@debian.org> (supplier of updated cdebconf package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 27 Jun 2007 20:44:38 +0100
Source: cdebconf
Binary: cdebconf-slang-udeb libdebconfclient0 cdebconf-priority cdebconf libdebconfclient0-dev cdebconf-udeb libdebconfclient0-udeb cdebconf-gtk-udeb cdebconf-text-udeb cdebconf-newt-udeb
Architecture: source powerpc all
Version: 0.117
Distribution: unstable
Urgency: low
Maintainer: Debian Install System Team <debian-boot@lists.debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
Description:
cdebconf - Debian Configuration Management System (C-implementation)
cdebconf-gtk-udeb - Gtk+ frontend for Debian Configuration Management System (udeb)
cdebconf-newt-udeb - Newt frontend for Debian Configuration Management System (udeb)
cdebconf-priority - Change debconf priority (udeb)
cdebconf-text-udeb - Plain text frontend for Debian Configuration Management System (udeb)
cdebconf-udeb - Debian Configuration Management System (C-implementation) (udeb)
libdebconfclient0 - Debian Configuration Management System (C-implementation)
libdebconfclient0-dev - Development files for cdebconf
libdebconfclient0-udeb - Debian Configuration Management System (C-implementation) (udeb)
Closes: 329743 426745 427657 430108
Changes:
cdebconf (0.117) unstable; urgency=low
.
[ Attilio Fiandrotti ]
* gtk.c: remove some compatibility conditions that are no longer needed.
Closes: #427657.
* Removed workaround for #404482, fixed upstream in gtk+ release 2.10.13.
.
[ Otavio Salvador ]
* Reduce the usage of casting to struct frontend_data on GTK frontend
code. Closes: #426745.
.
[ Colin Watson ]
* Remove five function pointers in every struct template that always
pointed to the same functions (or were entirely unused, in the cases of
get and set); export those functions from template.c instead.
* Fix off-by-one error reading from confmodule (thanks, Baruch Even;
closes: #430108).
* Document proposed PROGRESS REGION command.
* Fix a bunch of reference-counting bugs and other memory leaks.
* If DEBCONF_DROP_TRANSLATIONS is set to 1, then don't read translations
we aren't going to use, and reload the templates database if the
language is changed since we might not have the correct translations in
memory any more. This saves around 20MB of memory at d-i run-time
(closes: #329743). Note that this means that after the templates
database is first saved (in practice, after anna has run), it will no
longer be possible to change the language and get translated messages.
Files:
1feba30de31a9d1bfdd954adc20d9a37 1178 utils optional cdebconf_0.117.dsc
aab8da6067d12af9f5154c00e84f0e52 239271 utils optional cdebconf_0.117.tar.gz
a264f24aefb2b0056d86a13554fd6412 2688 debian-installer standard cdebconf-priority_0.117_all.udeb
56a1906f39deb5c45ff018d94d7a3504 174080 utils extra cdebconf_0.117_powerpc.deb
cb99a4f2d3a8e67f50b644d7a25216e5 35878 libs optional libdebconfclient0_0.117_powerpc.deb
e206338b2622accf27670f96a55ced53 34666 libdevel optional libdebconfclient0-dev_0.117_powerpc.deb
2ee9bfddedffc01c5eb5a1b08612445e 84038 debian-installer standard cdebconf-udeb_0.117_powerpc.udeb
9205521d050ec76f9362d51c1ec2a620 5492 debian-installer optional libdebconfclient0-udeb_0.117_powerpc.udeb
fa8db2581a4d2fb7d0094eacb6bfbb6e 19072 debian-installer optional cdebconf-newt-udeb_0.117_powerpc.udeb
1764a73f9e652a9d7fe60d33914d629b 20746 debian-installer optional cdebconf-text-udeb_0.117_powerpc.udeb
bac9334c888c3880ba3c7eb3e7d604fa 24958 debian-installer optional cdebconf-gtk-udeb_0.117_powerpc.udeb
Package-Type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGgtAc9t0zAhD6TNERAtFlAJ0dEqBjHdWX/nm69PGR75cCBosmsACfXXAu
YVrwFhJT0vNNZConaNLCGqI=
=KMzS
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: