Accepted man-db 2.3.20-18.woody.1 (i386 source)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 1 Aug 2003 01:10:30 +0100
Source: man-db
Binary: man-db
Architecture: source i386
Version: 2.3.20-18.woody.1
Distribution: stable-security
Urgency: high
Maintainer: Colin Watson <cjwatson@debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
Description:
man-db - The on-line manual pager
Closes: 203475
Changes:
man-db (2.3.20-18.woody.1) stable-security; urgency=high
.
* Fix several security problems reported on BugTraq (CAN-2003-0620,
closes: #203475):
- Limit sscanf() calls to the appropriate buffer size while reading
configuration file.
- Allocate strings dynamically while finding the ultimate source of man
pages, avoiding a couple of buffer overflows.
- Die gracefully if MANPATH contains too many elements, as a stopgap
measure until proper list handling can be added.
Files:
3cc25ebfd686f35d9c2f146a24bf8ef0 632 doc important man-db_2.3.20-18.woody.1.dsc
5021f8a23cba9b14df39aa06407baefb 516391 doc important man-db_2.3.20.orig.tar.gz
1f342c4614f39b822dd8eb87f2816510 105146 doc important man-db_2.3.20-18.woody.1.diff.gz
e4e37f184af8303539c5b75340f228f4 472600 doc important man-db_2.3.20-18.woody.1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
iD8DBQE/KbwWArxCt0PiXR4RAitkAKDHL0RaMZ4s9Vyot9ZgqXhMt4CXXQCfT+DW
kAkLq/flxO3dOm8C6dTW7fI=
=H+5p
-----END PGP SIGNATURE-----
Accepted:
man-db_2.3.20-18.woody.1.diff.gz
to pool/main/m/man-db/man-db_2.3.20-18.woody.1.diff.gz
man-db_2.3.20-18.woody.1.dsc
to pool/main/m/man-db/man-db_2.3.20-18.woody.1.dsc
man-db_2.3.20-18.woody.1_i386.deb
to pool/main/m/man-db/man-db_2.3.20-18.woody.1_i386.deb
Reply to: