Re: Preparation of the next stable Debian GNU/Linux update (I)

To: debian-release@lists.debian.org, 375494@bugs.debian.org
Subject: Re: Preparation of the next stable Debian GNU/Linux update (I)
From: Holger Levsen <debian@layer-acht.org>
Date: Tue, 19 Sep 2006 23:45:25 +0200
Message-id: <[🔎] 200609192345.33251.debian@layer-acht.org>
In-reply-to: <[🔎] slrnegodnb.4bc.jmm@inutil.org>
References: <[🔎] 20060914224535.GA4806@frigg.ftbfs.de> <[🔎] 200609161802.08032.debian@layer-acht.org> <[🔎] slrnegodnb.4bc.jmm@inutil.org>

Hi,

On Saturday 16 September 2006 19:39, Moritz Muehlenhoff wrote:
> > Please explain why you think that putting arbitrary long strings into
> > fixed= sized buffers is not a security problem, preferedly in the
> > bugreport.
> The buffer overflow can only be triggered through a file only root can
> write to.

Thanks for your explainations (also to Joey), forwarded to the BTS.


regards,
	Holger

Attachment: pgpB8yDdGNETe.pgp
Description: PGP signature

Reply to:

References:
- Preparation of the next stable Debian GNU/Linux update (I)
  - From: Martin Zobel-Helas <zobel@ftbfs.de>
- Re: Preparation of the next stable Debian GNU/Linux update (I)
  - From: Holger Levsen <debian@layer-acht.org>
- Re: Preparation of the next stable Debian GNU/Linux update (I)
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: m68k not a release arch for etch; status in testing, future plans?
Next by Date: Re: Preparation of the next stable Debian GNU/Linux update (I)
Previous by thread: Re: Preparation of the next stable Debian GNU/Linux update (I)
Next by thread: Re: Preparation of the next stable Debian GNU/Linux update (I)
Index(es):
- Date
- Thread