Hi Sebastian, thanks a lot for the patch! I could not also find any ics-images to check it.
Anyway, I uploaded your fix including also a fix from Sune Vuorela. Thank you, Anton 2013/2/6 Sebastian Ramacher <sramac...@debian.org>: > Control: tags -1 + patch > > On 2013-02-05 11:01:39, Sang Kil Cha wrote: >> imview has stack smashing vulnerability when parsing ics header @ >> io/readics.cxx:320 >> >> /* get the filename from the ICS file */ >> >> t = temp1; >> while (*bp != delim2) >> *t++ = *bp++; > > The attached patch should fix this bug. It adds bounds checking for all > the parts that read in a way like that. > > The provided file doesn't crash with the patch, but since I don't have > any ICS images, someone else should check if the patch doesn't break > anything. > > Regards > -- > Sebastian Ramacher > > -- > debian-science-maintainers mailing list > debian-science-maintain...@lists.alioth.debian.org > http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/debian-science-maintainers -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
