Bug#656108: CVE-2009-5029: Integer overflow in tzfile processing

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#656108: CVE-2009-5029: Integer overflow in tzfile processing
From: Moritz Muehlenhoff <muehlenhoff@univention.de>
Date: Mon, 16 Jan 2012 17:02:45 +0100
Message-id: <20120116160245.15701.66604.reportbug@vurm.knut.univention.de>
Reply-to: Moritz Muehlenhoff <muehlenhoff@univention.de>, 656108@bugs.debian.org

Package: eglibc
Severity: important
Tags: security

This was only recently assigned a CVE ID, but since the initial
discussion was from 2009, this is a CVE-2009-* ID.

There's an integer overflow in tzfile processing, please see
the Red Hat bugzilla for more descriptions and links to
the glibc upstream patches:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-5029

http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=97ac2654b2d831acaa18a2b018b0736245903fd2
http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=8fa26d571d4b87a1c7a7f19f1365f7e5d2995933

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Bug#656108: CVE-2009-5029: Integer overflow in tzfile processing
  - From: Aurelien Jarno <aurelien@aurel32.net>

Prev by Date: Bug#655711: marked as done (ldconfig makes system loader /lib/ld-linux.so.2 to be linked to 3rd party loader in /lib directory)
Next by Date: Processed: tagging 650790
Previous by thread: Bug#656077: marked as done (libc6-i386: default gconv path for 32bit libc on amd64 is /usr/lib/gconv while it should be /usr/lib32/gconv)
Next by thread: Bug#656108: CVE-2009-5029: Integer overflow in tzfile processing
Index(es):
- Date
- Thread