[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#291179: marked as done ([CAN-2005-0064] iDEFENSE Security Advisory 01.18.05 (xpdf))

Your message dated Wed, 19 Jan 2005 10:37:19 +0100
with message-id <20050119093719.GA1828@preusse>
and subject line Bug#291179: [CAN-2005-0064] iDEFENSE Security Advisory 01.18.05 (xpdf)
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 19 Jan 2005 09:07:20 +0000
>From hille42@web.de Wed Jan 19 01:07:19 2005
Return-path: <hille42@web.de>
Received: from smtp07.web.de [217.72.192.225] 
	by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1CrBo7-0002Eu-00; Wed, 19 Jan 2005 01:07:19 -0800
Received: from [212.14.71.206] (helo=preusse.amasol.de)
	by smtp07.web.de with asmtp (WEB.DE 4.103 #184)
	id 1CrBnd-00081u-00
	for submit@bugs.debian.org; Wed, 19 Jan 2005 10:06:49 +0100
Received: by preusse.amasol.de (sSMTP sendmail emulation); Wed, 19 Jan 2005 10:06:47 +0100
Date: Wed, 19 Jan 2005 10:06:46 +0100
From: Hilmar Preusse <hille42@web.de>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: [CAN-2005-0064] iDEFENSE Security Advisory 01.18.05 (xpdf)
Message-ID: <[🔎] 20050119090646.GA2092@preusse>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="azLHFNyN32YCQGCU"
Content-Disposition: inline
User-Agent: Mutt/1.4.1i
X-Operating-System: CYGWIN_NT-5.0 1.5.12(0.116/4/2) i686
X-www.distributed.net: OGR-P2: 4 packets (223.60 stats units) [3.29 Mnodes/s]
X-Face: .n=jHnz:2pu0c0)ef]4O#1FE{Vak?h89!g7_#2+PzSRoIU[pJFNnz>gLhn}UMwv}4/j{X.. 2E+>U>P!`PYk
X-Confirmation-Request: yes
X-Confirm-Reading-To: "Hilmar Preusse" <hille42@web.de>
Sender: hille42@web.de
X-Sender: hille42@web.de
Delivered-To: submit@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-6.8 required=4.0 tests=BAYES_00,FROM_ENDS_IN_NUMS,
	HAS_PACKAGE autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level: 


--azLHFNyN32YCQGCU
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Package: tetex-bin
Version: 2.0.2-26
Severity: grave
Tags: security patch

Hi,

seems to be another overflow in the xpdf library.

  http://www.securityfocus.com/archive/1/387583

patch available at the vendor site:

  ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.00pl3.patch

Yet I didn't have the time, if woody is affected too.

Regards,
  Hilmar
--=20
sigmentation fault

--azLHFNyN32YCQGCU
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (Cygwin)

iQB1AwUBQe4jJTwKFtukZhFxAQK9QQMAgBtLlt9AIEJDD1jviRehgi0NGHSo35sD
+pRrNQqNENFF0ZwZD1yBVsVEdGUG2uWYSbnCePH42Bkm+OQ/Ncr0LFqbJ3DKuedD
LO6mPcK683MFNpx/ERh/vDMWiJO+g+jU
=vYyo
-----END PGP SIGNATURE-----

--azLHFNyN32YCQGCU--

---------------------------------------
Received: (at 291179-done) by bugs.debian.org; 19 Jan 2005 09:37:51 +0000
>From hille42@web.de Wed Jan 19 01:37:51 2005
Return-path: <hille42@web.de>
Received: from smtp08.web.de [217.72.192.226] 
	by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1CrCHf-0000m4-00; Wed, 19 Jan 2005 01:37:51 -0800
Received: from [212.14.71.206] (helo=preusse.amasol.de)
	by smtp08.web.de with asmtp (WEB.DE 4.103 #184)
	id 1CrCH9-0002f0-00
	for 291179-done@bugs.debian.org; Wed, 19 Jan 2005 10:37:19 +0100
Received: by preusse.amasol.de (sSMTP sendmail emulation); Wed, 19 Jan 2005 10:37:19 +0100
Date: Wed, 19 Jan 2005 10:37:19 +0100
From: Hilmar Preusse <hille42@web.de>
To: 291179-done@bugs.debian.org
Subject: Re: Bug#291179: [CAN-2005-0064] iDEFENSE Security Advisory 01.18.05 (xpdf)
Message-ID: <20050119093719.GA1828@preusse>
References: <[🔎] 20050119090646.GA2092@preusse>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <[🔎] 20050119090646.GA2092@preusse>
User-Agent: Mutt/1.4.1i
X-Operating-System: CYGWIN_NT-5.0 1.5.12(0.116/4/2) i686
X-www.distributed.net: OGR-P2: 4 packets (223.60 stats units) [3.29 Mnodes/s]
X-Face: .n=jHnz:2pu0c0)ef]4O#1FE{Vak?h89!g7_#2+PzSRoIU[pJFNnz>gLhn}UMwv}4/j{X.. 2E+>U>P!`PYk
X-Confirmation-Request: yes
X-Confirm-Reading-To: "Hilmar Preusse" <hille42@web.de>
Sender: hille42@web.de
X-Sender: hille42@web.de
Delivered-To: 291179-done@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-4.8 required=4.0 tests=BAYES_00,FROM_ENDS_IN_NUMS,
	HAS_BUG_NUMBER autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level: 

On 19.01.05 Hilmar Preusse (hille42@web.de) wrote:

> seems to be another overflow in the xpdf library.
> 
>   http://www.securityfocus.com/archive/1/387583
> 
Sorry, I didn't read the changelog of -26 before reporting!
Closing.

> patch available at the vendor site:
> 
>   ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.00pl3.patch
> 
> Yet I didn't have the time, if woody is affected too.
> 
not affected.

Thanks,
  Hilmar
-- 
sigmentation fault
Reply to: