Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy

To: Martin Schulze <joey@infodrom.org>
Cc: 342292@bugs.debian.org, Debian Security Team <team@security.debian.org>, Martin Pitt <mpitt@debian.org>, Florian Weimer <fw@deneb.enyo.de>
Subject: Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
From: Frank Küster <frank@debian.org>
Date: Sun, 11 Dec 2005 13:27:37 +0100
Message-id: <[🔎] 86irtvkedi.fsf@alhambra.kuesterei.ch>
Reply-to: Frank Küster <frank@debian.org>, 342292@bugs.debian.org
In-reply-to: <[🔎] 20051209204508.GZ16502@finlandia.infodrom.north.de> (Martin Schulze's message of "Fri, 9 Dec 2005 21:45:08 +0100")
References: <[🔎] 20051206221518.7625.85542.reportbug@localhost.localdomain> <[🔎] 86lkyx8127.fsf@alhambra.kuesterei.ch> <[🔎] 20051209144703.GA21830@finlandia.infodrom.north.de> <[🔎] 86r78mjh4g.fsf@alhambra.kuesterei.ch> <[🔎] 20051209204508.GZ16502@finlandia.infodrom.north.de>

Martin Schulze <joey@infodrom.org> wrote:

> Frank Küster wrote:
>> Hi Joey,
>> 
>> Martin Schulze <joey@infodrom.org> wrote:
>> 
>> > The original patch was not sufficient.  I'm attaching the entire and the
>> > incremental patch.  Please apply the incremental patch to the version in
>> > sid as well.
>> 
>> Did you see Martin Pitt's "enhanced" patch - do both address the same
>> problems?
>
> The appendix removes the douplette Martin found, so yes.

I looked at both, and it seems that Martin's does more.  I'm speaking of
the patch attached to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342292;msg=136

It introduces limits.h and does the same we did for the xpdf patches at
the beginning of the year, namely change code that can be optimized away
by compilers.  

It seems to me that Martin Pitt's patch also has everything that yours
(Joey's) has, but I'm not completely sure; anyway it seems that also the
stable packages should use the code with limits.h.

Am I correct that the other issues that Florian found are not addressed
by any patch yet, and have not yet been widely published?  Should I
delay an upload to sid until this can be fixed, too?

>> P.S. Did you see my mail to -release regarding the tetex-base upload to
>> stable/proposed-updates?
>
> No.  Could you forward it?

Sent in a separate mail.

Regards, Frank
-- 
Frank Küster
Inst. f. Biochemie der Univ. Zürich
Debian Developer

Reply to:

Follow-Ups:
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Martin Pitt <martin.pitt@canonical.com>
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Martin Schulze <joey@infodrom.org>

References:
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Moritz Muehlenhoff <jmm@inutil.org>
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Frank Küster <frank@debian.org>
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Martin Schulze <joey@infodrom.org>
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Frank Küster <frank@debian.org>
- Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
  - From: Martin Schulze <joey@infodrom.org>

Prev by Date: SVN tetex commit: r398 - tex-common/trunk/debian
Next by Date: SVN tetex commit: r399 - in tex-common/trunk: conf/texmf.d debian
Previous by thread: Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
Next by thread: Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy
Index(es):
- Date
- Thread