[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#430108: marked as done (cdebconf: Off by one error)

Your message dated Wed, 27 Jun 2007 21:17:02 +0000
with message-id <E1I3eso-0000WI-LL@ries.debian.org>
and subject line Bug#430108: fixed in cdebconf 0.117
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--- Begin Message ---
Package: cdebconf
Version: 0.116
Severity: normal
Tags: patch

A read could fill the whole buffer and we put a null-char at the end
of the read data so we could write on a byte just after our buffer. 

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 2.6.22-rc4-mexhat (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages cdebconf depends on:
ii  libatk1.0-0                   1.18.0-2   The ATK accessibility toolkit
ii  libc6                         2.5-11     GNU C Library: Shared libraries
ii  libcairo2                     1.4.8-1    The Cairo 2D vector graphics libra
ii  libdebian-installer4          0.51       Library of common debian-installer
ii  libdirectfb-0.9-25   direct frame buffer graphics - sha
ii  libglib2.0-0                  2.12.12-1  The GLib library of C routines
ii  libgtk-directfb-2.0-0         2.10.13-1  The GTK+ graphical user interface 
ii  libgtk2.0-0                   2.10.13-1  The GTK+ graphical user interface 
ii  libnewt0.52                   0.52.2-10  Not Erik's Windowing Toolkit - tex
ii  libpango1.0-0                 1.16.4-1   Layout and rendering of internatio
ii  libtextwrap1                  0.1-5      text-wrapping library with i18n - 

cdebconf recommends no packages.
Index: confmodule.c
--- confmodule.c	(revision 47280)
+++ confmodule.c	(working copy)
@@ -84,7 +84,7 @@
                 return DC_OK;
-            ret = read(mod->infd, buf, sizeof(buf));
+            ret = read(mod->infd, buf, sizeof(buf)-1);
             if (ret < 0) {
                 if (errno == EINTR)

--- End Message ---
--- Begin Message ---
Source: cdebconf
Source-Version: 0.117

We believe that the bug you reported is fixed in the latest version of
cdebconf, which is due to be installed in the Debian FTP archive:

  to pool/main/c/cdebconf/cdebconf-gtk-udeb_0.117_powerpc.udeb
  to pool/main/c/cdebconf/cdebconf-newt-udeb_0.117_powerpc.udeb
  to pool/main/c/cdebconf/cdebconf-priority_0.117_all.udeb
  to pool/main/c/cdebconf/cdebconf-text-udeb_0.117_powerpc.udeb
  to pool/main/c/cdebconf/cdebconf-udeb_0.117_powerpc.udeb
  to pool/main/c/cdebconf/cdebconf_0.117.dsc
  to pool/main/c/cdebconf/cdebconf_0.117.tar.gz
  to pool/main/c/cdebconf/cdebconf_0.117_powerpc.deb
  to pool/main/c/cdebconf/libdebconfclient0-dev_0.117_powerpc.deb
  to pool/main/c/cdebconf/libdebconfclient0-udeb_0.117_powerpc.udeb
  to pool/main/c/cdebconf/libdebconfclient0_0.117_powerpc.deb

A summary of the changes between this version and the previous one is

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 430108@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
Colin Watson <cjwatson@debian.org> (supplier of updated cdebconf package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)

Hash: SHA1

Format: 1.7
Date: Wed, 27 Jun 2007 20:44:38 +0100
Source: cdebconf
Binary: cdebconf-slang-udeb libdebconfclient0 cdebconf-priority cdebconf libdebconfclient0-dev cdebconf-udeb libdebconfclient0-udeb cdebconf-gtk-udeb cdebconf-text-udeb cdebconf-newt-udeb
Architecture: source powerpc all
Version: 0.117
Distribution: unstable
Urgency: low
Maintainer: Debian Install System Team <debian-boot@lists.debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
 cdebconf   - Debian Configuration Management System (C-implementation)
 cdebconf-gtk-udeb - Gtk+ frontend for Debian Configuration Management System (udeb)
 cdebconf-newt-udeb - Newt frontend for Debian Configuration Management System (udeb)
 cdebconf-priority - Change debconf priority (udeb)
 cdebconf-text-udeb - Plain text frontend for Debian Configuration Management System (udeb)
 cdebconf-udeb - Debian Configuration Management System (C-implementation) (udeb)
 libdebconfclient0 - Debian Configuration Management System (C-implementation)
 libdebconfclient0-dev - Development files for cdebconf
 libdebconfclient0-udeb - Debian Configuration Management System (C-implementation) (udeb)
Closes: 329743 426745 427657 430108
 cdebconf (0.117) unstable; urgency=low
   [ Attilio Fiandrotti ]
   * gtk.c: remove some compatibility conditions that are no longer needed.
     Closes: #427657.
   * Removed workaround for #404482, fixed upstream in gtk+ release 2.10.13.
   [ Otavio Salvador ]
   * Reduce the usage of casting to struct frontend_data on GTK frontend
     code. Closes: #426745.
   [ Colin Watson ]
   * Remove five function pointers in every struct template that always
     pointed to the same functions (or were entirely unused, in the cases of
     get and set); export those functions from template.c instead.
   * Fix off-by-one error reading from confmodule (thanks, Baruch Even;
     closes: #430108).
   * Document proposed PROGRESS REGION command.
   * Fix a bunch of reference-counting bugs and other memory leaks.
   * If DEBCONF_DROP_TRANSLATIONS is set to 1, then don't read translations
     we aren't going to use, and reload the templates database if the
     language is changed since we might not have the correct translations in
     memory any more. This saves around 20MB of memory at d-i run-time
     (closes: #329743). Note that this means that after the templates
     database is first saved (in practice, after anna has run), it will no
     longer be possible to change the language and get translated messages.
 1feba30de31a9d1bfdd954adc20d9a37 1178 utils optional cdebconf_0.117.dsc
 aab8da6067d12af9f5154c00e84f0e52 239271 utils optional cdebconf_0.117.tar.gz
 a264f24aefb2b0056d86a13554fd6412 2688 debian-installer standard cdebconf-priority_0.117_all.udeb
 56a1906f39deb5c45ff018d94d7a3504 174080 utils extra cdebconf_0.117_powerpc.deb
 cb99a4f2d3a8e67f50b644d7a25216e5 35878 libs optional libdebconfclient0_0.117_powerpc.deb
 e206338b2622accf27670f96a55ced53 34666 libdevel optional libdebconfclient0-dev_0.117_powerpc.deb
 2ee9bfddedffc01c5eb5a1b08612445e 84038 debian-installer standard cdebconf-udeb_0.117_powerpc.udeb
 9205521d050ec76f9362d51c1ec2a620 5492 debian-installer optional libdebconfclient0-udeb_0.117_powerpc.udeb
 fa8db2581a4d2fb7d0094eacb6bfbb6e 19072 debian-installer optional cdebconf-newt-udeb_0.117_powerpc.udeb
 1764a73f9e652a9d7fe60d33914d629b 20746 debian-installer optional cdebconf-text-udeb_0.117_powerpc.udeb
 bac9334c888c3880ba3c7eb3e7d604fa 24958 debian-installer optional cdebconf-gtk-udeb_0.117_powerpc.udeb
Package-Type: udeb

Version: GnuPG v1.4.6 (GNU/Linux)


--- End Message ---

Reply to: