On Sat, May 02, 2009 at 04:34:01PM +0300, Antti-Juhani Kaijanaho wrote: > Package: tin > Version: 1:1.9.4-1 > Severity: minor > > If tin receives 500 for both CAPABILITIES and MODE READER, it loops trying > both and eventually crashes. > > The cause of the crash seems to be on line 1148 of src/nntplib.c, where > the check_extensions function is called recursively if both CAPABILITIES and > MODE READER fail, eventually exhausting the stack space. The comment says > that > this is for a second attempt, but there is no check that we aren't already in > the second (or the five hundreth) attempt. > > (Minor because this was uncovered in testing an incomplete server - I do not > know how widespread servers that trigger this are in the wild. However, I do > not believe a client should crash however broken the server is.)
this is already fixed upstream in the lastest snapshot urs -- "Only whimps use tape backup: _real_ men just upload their important stuff on ftp, and let the rest of the world mirror it ;)" - Linus -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
