Bug#964083: Heap corruption in nfacctd

To: Chris Danis <cdanis@wikimedia.org>, 964083@bugs.debian.org
Subject: Bug#964083: Heap corruption in nfacctd
From: Bernhard Schmidt <berni@debian.org>
Date: Tue, 28 Oct 2025 00:59:25 +0100
Message-id: <[🔎] aQAHXX87gfi6v4ZT@fliwatuet.svr02.mucip.net>
Reply-to: Bernhard Schmidt <berni@debian.org>, 964083@bugs.debian.org
In-reply-to: <CAJO=w6boWJMPX_H9fTg+EzJ8+zuOHssU+1aLBwr8ctLASwB+UA@mail.gmail.com>
References: <CAJO=w6boWJMPX_H9fTg+EzJ8+zuOHssU+1aLBwr8ctLASwB+UA@mail.gmail.com> <CAJO=w6boWJMPX_H9fTg+EzJ8+zuOHssU+1aLBwr8ctLASwB+UA@mail.gmail.com>

Version: 1.7.6-1

On 01/07/20 08:14 AM, Chris Danis wrote:

> The version of nfacctd shipped in Buster has a bug where it can
> corrupt its heap under certain external inputs of BGP extended
> communities.
> 
> This was reported upstream[0] and fixed with a patch[1] that trivially
> applies against the version in Buster.  We at Wikimedia are
> backporting it to our installs, but this should probably be backported
> as a stable patch in Debian at large.
> 
> Refs:
> [0]: https://github.com/pmacct/pmacct/issues/414
> [1]: https://github.com/pmacct/pmacct/commit/9bc7a154

Based on that commit the fix should be included in 1.7.6

Bernhard

Reply to:

Prev by Date: Processing of wvstreams_4.6.1-19_source.changes
Next by Date: Bug#1006871: marked as done (pmacctd: SEGV when ICMP/ICMPv6 traffic was processed and 'flows' are used)
Previous by thread: Processing of wvstreams_4.6.1-19_source.changes
Next by thread: Bug#1006871: marked as done (pmacctd: SEGV when ICMP/ICMPv6 traffic was processed and 'flows' are used)
Index(es):
- Date
- Thread