[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#507103: marked as done (xdkcal: buffer overflow when handling environmental variables)

Your message dated 
with message-id <20110327111425.14453.16342.mass-bugs-close@quantz.debian.org>
and subject line xdkcal removed from Debian unstable
has caused the Debian Bug report #507103,
regarding xdkcal: buffer overflow when handling environmental variables
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
507103: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507103
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: xdkcal
Version: 0.9d-2.2
Severity: normal

Hi,

While scanning some packages I found the following piece of code which leads 
to a buffer overflow when an overly long HOME env var is used.

Affected code:
> FILE *init_file(char *mode)
> {
>     char file[512];
>     FILE *fp;
>
>     strcpy(file,getenv("HOME"));

Cheers,
-- 
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net

Attachment: signature.asc
Description: This is a digitally signed message part.


--- End Message ---
--- Begin Message --- 
Version: 0.9d-3+rm

xdkcal has been removed from Debian unstable: http://bugs.debian.org/525432

Closing its bugs with a Version higher than the last unstable upload.

More information about this script at:
  http://git.debian.org/?p=users/morph/mass-bugs-close.git;a=blob_plain;f=README;hb=HEAD

--- End Message ---
Reply to: