Bug#1016439: buster-pu: package procmail/3.22-26+deb10u1

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1016439: buster-pu: package procmail/3.22-26+deb10u1
From: Santiago Vila <sanvila@unex.es>
Date: Sun, 31 Jul 2022 20:31:32 +0200
Message-id: <[🔎] dc542f98-444f-0160-0c40-e380013b2b0c@unex.es>
Reply-to: Santiago Vila <sanvila@unex.es>, 1016439@bugs.debian.org

Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian.org@packages.debian.org
Usertags: pu
X-Debbugs-Cc: sanvila@debian.org

Dear release managers:

I've applied this small procmail fix to buster as well, hopefully to bepart of the next point release, whenever it will be.


This was done to bullseye previously:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014221

As in the bullseye case, this is the type of bug I don't want to see in
stable or oldstable.

The debdiff is attached.

Thanks.

diff -Nru procmail-3.22/debian/changelog procmail-3.22/debian/changelog
--- procmail-3.22/debian/changelog	2017-11-16 23:42:36.000000000 +0100
+++ procmail-3.22/debian/changelog	2022-07-31 20:10:00.000000000 +0200
@@ -1,3 +1,11 @@
+procmail (3.22-26+deb10u1) buster; urgency=medium
+
+  * Fix NULL pointer dereference. Closes: #769938.
+    Reported by Jakub Wilk using American Fuzzy Lop.
+    Patch from Stephen R. van den Berg.
+
+ -- Santiago Vila <sanvila@debian.org>  Sun, 31 Jul 2022 20:10:00 +0200
+
 procmail (3.22-26) unstable; urgency=medium
 
   * Fix buffer overflow in loadbuf(). Closes: #876511.
diff -Nru procmail-3.22/debian/patches/31 procmail-3.22/debian/patches/31
--- procmail-3.22/debian/patches/31	1970-01-01 01:00:00.000000000 +0100
+++ procmail-3.22/debian/patches/31	2022-07-31 19:32:00.000000000 +0200
@@ -0,0 +1,19 @@
+From: Stephen R. van den Berg <srb@cuci.nl>
+Subject: Cater for mails containing an incomplete From_ line.
+Bug-Debian: http://bugs.debian.org/769938
+X-Debian-version: 3.22-27
+
+--- a/src/from.c
++++ b/src/from.c
+@@ -117,7 +117,10 @@
+ 	      themail.p[extra]='\0';		  /* terminate it for strchr */
+ 	    }
+ 	   while(!(rstart=strchr(themail.p,'\n')));
+-	   extra=rstart?extra-(++rstart-themail.p):0;
++	   if (rstart)
++	     extra -= ++rstart - themail.p;
++	   else
++	     extra = 0, rstart = themail.p;
+ 	 }
+ 	else
+ 	 { size_t tfrl= ++rstart-themail.p; /* length of existing From_ line */
diff -Nru procmail-3.22/debian/patches/series procmail-3.22/debian/patches/series
--- procmail-3.22/debian/patches/series	2017-11-16 23:41:45.000000000 +0100
+++ procmail-3.22/debian/patches/series	2022-07-31 19:00:00.000000000 +0200
@@ -29,3 +29,4 @@
 28
 29
 30
+31

Reply to:

Prev by Date: Bug#1015254: transition: opencascade
Previous by thread: Processed: libreoffice-evolution: Evolution address source indefinitely freezes UI
Index(es):
- Date
- Thread