Your message dated Fri, 08 Feb 2008 13:02:03 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#458042: fixed in iptables 1.4.0-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: iptables
Version: 1.3.8.0debian1-1
Severity: normal
Tags: patch
iptables-restore must not pass a table into do_command. It checks for
"-t arg" and "--table arg", but not "-targ". (On a related note, using
-targ does not work as expected).
This should fail gracefully, but crashes:
iptables-restore <(echo -e '*filter\n-A INPUT -tx\nCOMMIT')
And this should use table "filter", or perhaps raise an error, but
instead sets the table to (literally) "-tfilter":
iptables -tfilter -A INPUT
Regards,
Michael Spang
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing'), (100, 'unstable'), (10, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.24-rc6-freyr (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages iptables depends on:
ii libc6 2.7-5 GNU C Library: Shared libraries
iptables recommends no packages.
-- no debconf information
diff -ur old/iptables/ip6tables.c new/iptables/ip6tables.c
--- old/iptables/ip6tables.c 2007-06-24 19:26:35.000000000 -0400
+++ new/iptables/ip6tables.c 2007-12-28 01:31:34.000000000 -0500
@@ -2160,7 +2160,7 @@
if (invert)
exit_error(PARAMETER_PROBLEM,
"unexpected ! flag before --table");
- *table = argv[optind-1];
+ *table = optarg;
break;
case 'x':
diff -ur old/iptables/ip6tables-restore.c new/iptables/ip6tables-restore.c
--- old/iptables/ip6tables-restore.c 2007-05-22 13:11:40.000000000 -0400
+++ new/iptables/ip6tables-restore.c 2007-12-28 01:35:10.000000000 -0500
@@ -383,7 +383,7 @@
*(param_buffer+param_len) = '\0';
/* check if table name specified */
- if (!strncmp(param_buffer, "-t", 3)
+ if (!strncmp(param_buffer, "-t", 2)
|| !strncmp(param_buffer, "--table", 8)) {
exit_error(PARAMETER_PROBLEM,
"Line %u seems to have a "
diff -ur old/iptables/iptables.c new/iptables/iptables.c
--- old/iptables/iptables.c 2007-04-29 19:03:30.000000000 -0400
+++ new/iptables/iptables.c 2007-12-28 02:08:11.000000000 -0500
@@ -2249,7 +2249,7 @@
if (invert)
exit_error(PARAMETER_PROBLEM,
"unexpected ! flag before --table");
- *table = argv[optind-1];
+ *table = optarg;
break;
case 'x':
diff -ur old/iptables/iptables-restore.c new/iptables/iptables-restore.c
--- old/iptables/iptables-restore.c 2007-05-22 13:11:40.000000000 -0400
+++ new/iptables/iptables-restore.c 2007-12-28 01:20:00.000000000 -0500
@@ -386,7 +386,7 @@
param_buffer[param_len] = '\0';
/* check if table name specified */
- if (!strncmp(param_buffer, "-t", 3)
+ if (!strncmp(param_buffer, "-t", 2)
|| !strncmp(param_buffer, "--table", 8)) {
exit_error(PARAMETER_PROBLEM,
"Line %u seems to have a "
--- End Message ---
--- Begin Message ---
Source: iptables
Source-Version: 1.4.0-2
We believe that the bug you reported is fixed in the latest version of
iptables, which is due to be installed in the Debian FTP archive:
iptables-dev_1.4.0-2_amd64.deb
to pool/main/i/iptables/iptables-dev_1.4.0-2_amd64.deb
iptables_1.4.0-2.diff.gz
to pool/main/i/iptables/iptables_1.4.0-2.diff.gz
iptables_1.4.0-2.dsc
to pool/main/i/iptables/iptables_1.4.0-2.dsc
iptables_1.4.0-2_amd64.deb
to pool/main/i/iptables/iptables_1.4.0-2_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Laurence J. Lane <[EMAIL PROTECTED]> (supplier of updated iptables package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 08 Feb 2008 00:08:05 -0500
Source: iptables
Binary: iptables iptables-dev
Architecture: source amd64
Version: 1.4.0-2
Distribution: unstable
Urgency: low
Maintainer: Laurence J. Lane <[EMAIL PROTECTED]>
Changed-By: Laurence J. Lane <[EMAIL PROTECTED]>
Description:
iptables - administration tools for packet filtering and NAT
iptables-dev - development files for iptable's libipq
Closes: 419650 458042
Changes:
iptables (1.4.0-2) unstable; urgency=low
.
* added missing ipq_set_verdict.3 information. Reported and fixed by
Luca Bedogni. Thanks. closes: #419650
* added -tblah segfault fix. Reported and fixed by Michael Spang.
Thanks. closes: #458042
Files:
20d82d4a96d68b11e013844b35e78f45 810 net important iptables_1.4.0-2.dsc
5bae3547d1156c1c464296b6818c02e1 133961 net important iptables_1.4.0-2.diff.gz
a17c49e69c764884411c834fee697cfc 445538 net important
iptables_1.4.0-2_amd64.deb
3d6d78c3a04e264df6b2dd598d0e823c 91260 devel optional
iptables-dev_1.4.0-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iQCVAwUBR6xPh5HHilxwLR3FAQKxBgP/f0C5RW0Kk0dQDDSXMbnE8guviTDvZjyJ
vyTQu0348jv1fnvDR5Z8kqabewiopm1xBBFgp/UyI8YSPU4LYxGJnzOgVnxJmU6r
M5Nuci81my9pS1GC7jlUUqa71q7vYaD6BgYeD/Edm404BKOdzhv/yIcPX9dIDQGX
Nx9uYcc2VhU=
=9EJR
-----END PGP SIGNATURE-----
--- End Message ---
