registry team mailing list archive

Thread
Date

[Bug 392501] Re: readdir_r smashes stack on long dir entry

To: registry@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <392501@xxxxxxxxxxxxxxxxxx>
Date: Tue, 25 May 2010 20:06:06 -0000
Reply-to: Bug 392501 <392501@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package glibc - 2.7-10ubuntu6

---------------
glibc (2.7-10ubuntu6) hardy-security; urgency=low

  * SECURITY UPDATE: integer overflow in strfmon() might lead to arbitrary
    code execution.
    - debian/patches/any/git-strfmon-overflow.diff: backport from upstream.
    - CVE-2008-1391
  * SECURITY UPDATE: newlines not escaped in /etc/mtab.
    - debian/patches/any/git-mntent-newline-escape.diff: upstream fixes.
    - CVE-2010-0296
  * SECURITY UPDATE: arbitrary code execution from ELF headers (LP: #542197).
    - debian/patches/any/git-fix-dtag-cast.diff: upstream fixes.
    - CVE-2010-0830
  * debian/patches/any/git-readdir-padding.diff: fix readdir padding when
    processing getdents64() in a 32-bit execution environment (LP: #392501).
 -- Kees Cook <kees@xxxxxxxxxx>   Wed, 19 May 2010 16:59:18 -0700

-- 
readdir_r smashes stack on long dir entry
https://bugs.launchpad.net/bugs/392501
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for GLibC.