registry team mailing list archive

Thread
Date

[Bug 392501] Re: readdir_r smashes stack on long dir entry

To: registry@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <392501@xxxxxxxxxxxxxxxxxx>
Date: Tue, 25 May 2010 20:06:06 -0000
Reply-to: Bug 392501 <392501@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package eglibc - 2.10.1-0ubuntu17

---------------
eglibc (2.10.1-0ubuntu17) karmic-security; urgency=low

  * SECURITY UPDATE: integer overflow in strfmon() might lead to arbitrary
    code execution.
    - debian/patches/any/git-strfmon-overflow.diff: backport from upstream.
    - CVE-2008-1391
  * SECURITY UPDATE: newlines not escaped in /etc/mtab.
    - debian/patches/any/git-mntent-newline-escape.diff: upstream fixes.
    - CVE-2010-0296
  * SECURITY UPDATE: arbitrary code execution from ELF headers (LP: #542197).
    - debian/patches/any/git-fix-dtag-cast.diff: upstream fixes.
    - CVE-2010-0830
  * debian/patches/any/git-readdir-padding.diff: fix readdir padding when
    processing getdents64() in a 32-bit execution environment (LP: #392501).
 -- Kees Cook <kees@xxxxxxxxxx>   Wed, 19 May 2010 16:57:47 -0700

** Changed in: eglibc (Ubuntu Karmic)
       Status: Triaged => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-1391

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-0296

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-0830

** Changed in: glibc (Ubuntu Jaunty)
       Status: Triaged => Fix Released

-- 
readdir_r smashes stack on long dir entry
https://bugs.launchpad.net/bugs/392501
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for GLibC.