[email protected]
[Top] [All Lists]

Bug#416999: marked as forwarded (mairix: segfault on invalid message hea

Subject: Bug#416999: marked as forwarded mairix: segfault on invalid message header in nvp.c
From: Debian Bug Tracking System
Date: Sun, 01 Apr 2007 21:51:06 +0000
Your message dated Sun, 1 Apr 2007 15:15:43 -0400
with message-id <[email protected]>
has caused the Debian Bug report #416999,
regarding mairix: segfault on invalid message header in nvp.c
to be marked as having been forwarded to the upstream software
author(s) Richard Curnow <[email protected]>.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--- Begin Message ---
Subject: : Bug#416999: mairix: segfault on invalid message header in nvp.c]
From: "Benj. Mako Hill"
Date: Sun, 1 Apr 2007 15:15:43 -0400
Thanks Ken for the bug report and for the patch!

I'm forwarding this to Richard Curnow, the author and upstream
maintainer for Mairix. If he doesn't object loudly and is not planning a
new release of Mairix soon, I'll probably fix this in the Debian
package.

Regards,
Mako

-- 
Benjamin Mako Hill
[email protected]
http://mako.cc/

--- Begin Message ---
Subject: Bug#416999: mairix: segfault on invalid message header in nvp.c
From: Chung-chieh Shan
Date: Sun, 1 Apr 2007 01:59:59 -0400
Package: mairix
Version: 0.20-1
Severity: important
Tags: patch

Hello,

make_nvp() crashes if the input string is not valid, because
nvp_next_state may return -1.  Changing

    current_state = nvp_next_state(current_state, tok);

to

    if (0 > (current_state = nvp_next_state(current_state, tok)))
        current_state = nvp_in;

in nvp.c fixes this problem.

Thanks,
        Ken

-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18
Locale: LANG=zh_TW.UTF-8, LC_CTYPE=zh_TW.UTF-8 (charmap=UTF-8)

Versions of packages mairix depends on:
ii  libbz2-1.0                  1.0.3-6      high-quality block-sorting file co
ii  libc6                       2.3.6.ds1-13 GNU C Library: Shared libraries
ii  zlib1g                      1:1.2.3-13   compression library - runtime

mairix recommends no packages.

-- no debconf information

-- 
Edit this signature at http://www.digitas.harvard.edu/cgi-bin/ken/sig
As the choice is essentially cosmetic there will likely be no end to
the debate on what the correct decision should be.
http://successor-ml.org/index.php?title=Quoting/anti-quoting

--- End Message ---

--- End Message ---
<Prev in Thread] Current Thread [Next in Thread>
  • Bug#416999: marked as forwarded (mairix: segfault on invalid message header in nvp.c), Debian Bug Tracking System <=