Your message dated Tue, 07 Jun 2005 13:33:28 +0200
with message-id <[EMAIL PROTECTED]>
and subject line kmd: Integer overflow in ELF header parsing
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 21 May 2005 23:34:49 +0000
>From [EMAIL PROTECTED] Sat May 21 16:34:49 2005
Return-path: <[EMAIL PROTECTED]>
Received: from inutil.org (vserver151.vserver151.serverflex.de)
[193.22.164.111]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DZdUW-0005xD-00; Sat, 21 May 2005 16:34:48 -0700
Received: from p54896152.dip.t-dialin.net ([84.137.97.82]
helo=localhost.localdomain)
by vserver151.vserver151.serverflex.de with esmtpsa
(TLS-1.0:RSA_AES_256_CBC_SHA:32)
(Exim 4.50)
id 1DZdSd-0002ib-N1
for [EMAIL PROTECTED]; Sun, 22 May 2005 01:32:52 +0200
Received: from jmm by localhost.localdomain with local (Exim 4.50)
id 1DZdUM-0002N4-EZ; Sun, 22 May 2005 01:34:38 +0200
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Moritz Muehlenhoff <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: kmd: Integer overflow in ELF header parsing
X-Mailer: reportbug 3.11
Date: Sun, 22 May 2005 01:34:37 +0200
X-Debbugs-Cc: [EMAIL PROTECTED]
Message-Id: <[EMAIL PROTECTED]>
X-SA-Exim-Connect-IP: 84.137.97.82
X-SA-Exim-Mail-From: [EMAIL PROTECTED]
X-SA-Exim-Scanned: No (on vserver151.vserver151.serverflex.de); SAEximRunCond
expanded to false
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-11.0 required=4.0 tests=BAYES_00,HAS_PACKAGE,
X_DEBBUGS_CC autolearn=ham version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
Package: kmd
Version: 0.9.19-1
Severity: grave
Tags: security
Justification: user security hole
kmd uses binutils-dev's BFD library for ELF header parsing and is therefore
vulnerable to it's integer overflow in ELF segment handling. kmd needs to be
recompiled against binutils-dev 2.15-6 once this has entered the archive.
I've verified a that a complete rebuild with binutils-dev from incoming.d.o
correctly refuses the invalid ELF header of the crafted test binary.
Cheers,
Moritz
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.11
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)
Versions of packages kmd depends on:
ii libc6 2.3.2.ds1-21 GNU C Library: Shared libraries an
ii libglib1.2 1.2.10-10 The GLib library of C routines
ii libgtk1.2 1.2.10-17 The GIMP Toolkit set of widgets fo
ii libx11-6 4.3.0.dfsg.1-12.0.1 X Window System protocol client li
ii libxext6 4.3.0.dfsg.1-12.0.1 X Window System miscellaneous exte
ii libxi6 4.3.0.dfsg.1-12.0.1 X Window System Input extension li
ii xlibs 4.3.0.dfsg.1-12 X Keyboard Extension (XKB) configu
-- no debconf information
---------------------------------------
Received: (at 310139-done) by bugs.debian.org; 7 Jun 2005 11:33:26 +0000
>From [EMAIL PROTECTED] Tue Jun 07 04:33:26 2005
Return-path: <[EMAIL PROTECTED]>
Received: from cerbero.die.upm.es (super.die.upm.es) [138.4.9.89]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DfcKk-00020v-00; Tue, 07 Jun 2005 04:33:26 -0700
Received: from localhost.localdomain ([127.0.0.1])
by super.die.upm.es with esmtp (Exim 4.50)
id 1DfcKm-00069D-Fx
for [EMAIL PROTECTED]; Tue, 07 Jun 2005 13:33:28 +0200
Subject: Re: kmd: Integer overflow in ELF header parsing
From: "Jose M. Moya" <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Content-Type: text/plain
Organization: Technical University of Madrid
Date: Tue, 07 Jun 2005 13:33:28 +0200
Message-Id: <[EMAIL PROTECTED]>
Mime-Version: 1.0
X-Mailer: Evolution 2.2.2
Content-Transfer-Encoding: 7bit
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no
version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
Patch applied to my build tree.
Closing as no new version is expected in the near future and there is no
reason for a new upload.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
