Bug#75853: marked as done (libsafe kills openssl when openssl tries to encrypt a key)

Sat, 15 Mar 2008 09:54:46 -0700 

Your message dated Sat, 15 Mar 2008 17:51:15 +0100
with message-id <[EMAIL PROTECTED]>
and subject line Re: [Pkg-openssl-devel] Bug#75853: libsafe doesnt work with 
openssl option -fomit-frame-pointer
has caused the Debian Bug report #75853,
regarding libsafe kills openssl when openssl tries to encrypt a key
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
75853: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=75853
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message --- 
Package: openssl
Version: 0.9.5a-5
Severity: normal

libsafe kills openssl when openssl tries to encrypt a key (using 
mod-ssl-makecert) :

Oct 29 16:54:34 voyageurs libsafe.so[9195]: version 1.3
Oct 29 16:54:34 voyageurs libsafe.so[9195]: detected an attempt to write across 
stack boundary.
Oct 29 16:54:34 voyageurs libsafe.so[9195]: terminating /usr/bin/openssl
Oct 29 16:54:34 voyageurs libsafe.so[9195]: overflow caused by memcpy()

(This happens just after entering the passphrase to protect the certificate).

-- System Information
Debian Release: woody
Architecture: i386
Kernel: Linux voyageurs.ddts.net 2.2.17 #1 SMP mar oct 17 02:00:29 CEST 2000 
i686

Versions of packages openssl depends on:
ii  libc6                         2.1.95-1   GNU C Library: Shared libraries an
ii  libssl095a                    0.9.5a-5   SSL shared libraries              

-- 
Jean-Philippe Guérard

--- End Message ---
--- Begin Message --- 
Version: 0.9.7g-3

On Wed, Mar 12, 2008 at 12:00:50AM +0000, Jason Cormie wrote:
> Package: openssl
> Followup-For: Bug #75853
> 
> 
> The following posting explains that if openssl is compiled with
> -fomit-frame-pointer it cant be used with libsafe
> 
> http://marc.info/?l=openssl-users&m=98116685021150&w=2
> 
> I believe this to be the case with debian
> 
> so, 2 choices:
> 
> 1. recompile without that optimizing option

We stopped doing that in 0.9.7g-3, so closing the bug.


Kurt

--- End Message ---

Reply via email to