Your message dated Tue, 01 Mar 2022 14:34:28 +0000
with message-id <[email protected]>
and subject line Bug#769938: fixed in procmail 3.22-27
has caused the Debian Bug report #769938,
regarding procmail: NULL pointer dereference
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
769938: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769938
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: procmail
Version: 3.22-22
Usertags: afl
If there's no \n at all in the mail, or if the "From " line contains
null byte, procmail dereferences NULL pointer:
$ printf 'From ' | procmail -d jwilk
Segmentation fault
This bug was brought to you by American fuzzy lop:
http://lcamtuf.coredump.cx/afl/
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (990, 'unstable'), (500, 'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages procmail depends on:
ii libc6 2.19-13
Versions of packages procmail recommends:
ii esmtp-run [mail-transport-agent] 1.2-12
ii fetchmail 6.3.26-1+b1
--
Jakub Wilk
--- End Message ---
--- Begin Message ---
Source: procmail
Source-Version: 3.22-27
Done: Santiago Vila <[email protected]>
We believe that the bug you reported is fixed in the latest version of
procmail, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Santiago Vila <[email protected]> (supplier of updated procmail package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 01 Mar 2022 15:00:00 +0100
Source: procmail
Architecture: source
Version: 3.22-27
Distribution: unstable
Urgency: medium
Maintainer: Santiago Vila <[email protected]>
Changed-By: Santiago Vila <[email protected]>
Closes: 769938
Changes:
procmail (3.22-27) unstable; urgency=medium
.
* Fix NULL pointer dereference. Closes: #769938.
Reported by Jakub Wilk using American Fuzzy Lop.
Patch from Stephen R. van den Berg.
Checksums-Sha1:
139615baa316a45a02b5b19ee85b6abc4b1ea36f 1320 procmail_3.22-27.dsc
8018421b7110a42bb35fd0c0e0a3a73a689b8e2c 20240 procmail_3.22-27.debian.tar.xz
0c73450ed964f5440fd9b36eb9a52b0288914849 4121 procmail_3.22-27_source.buildinfo
Checksums-Sha256:
e8d73f782ffcb9891bc6e68a5ebd1d9de3319fc07e8b9789243425db23d4b0f9 1320
procmail_3.22-27.dsc
c75f9f419cac963f5e93cd9edf81d4c0dc4974f8bb2d30f7f1b8cfd1099a4e62 20240
procmail_3.22-27.debian.tar.xz
11d5116f4ed61caa60a3b1edb9bac99659bc9908fc0f37a395c5d6751d8dd6f6 4121
procmail_3.22-27_source.buildinfo
Files:
a0ff3b8ef751e6ed62a1d674cf14bc32 1320 mail standard procmail_3.22-27.dsc
2e257e75ebeccdbb6edfc172dfbac6fc 20240 mail standard
procmail_3.22-27.debian.tar.xz
652fe34ca2e4e994ce7a5014c3ed6d25 4121 mail standard
procmail_3.22-27_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEE1Uw7+v+wQt44LaXXQc5/C58bizIFAmIeJ70ACgkQQc5/C58b
izIhlwf+KeA7pzO2qI2HHUED39Jqgu0vX71q6xpJn9M/WSP1si/cPsnQz6daER1z
8sJ5CrlT462bWIhSDgd2K3AR8TAh6C2GacCOFGgx+QinJQAdGVwo2GXh7FLg8+dn
CxV4clhizc3ZyIElzarfCfW8KHmQpsyKsSZtpeqPl1WCxMqde7ipObpnjDv67Hek
GTwav51jVxrg/ep56DdGFwEz2qS1a3SXoUo3h/qdMduHc1YfdAn5HWcpfW7f5qTp
7tTj2+nS950yT8NQHtrr6rMKzvdKI5IlFWp3aaotxCPTBxdXJWWYx2ssu0URMjhk
86E5VVNwXN6aVGWw3Y4xvomwex6Wsg==
=rUgQ
-----END PGP SIGNATURE-----
--- End Message ---
