*** This bug is a security vulnerability *** You have been subscribed to a public security bug by Jamie Strandboge (jdstrand):
The bug was reported 2010-01-02 here: * https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=292 Missing LDNS_STATUS_DOMAINNAME_OVERFLOW check results in stack smashing parsing packets. Description: Ubuntu 10.04.3 LTS Release: 10.04 libldns-dev: Installed: 1.6.1-1 Candidate: 1.6.1-1 Version table: *** 1.6.1-1 0 500 http://se.archive.ubuntu.com/ubuntu/ lucid/universe Packages 100 /var/lib/dpkg/status I expected to have libldns return LDNS_STATUS_DOMAINNAME_OVERFLOW, but instead it smashes the stack leading to a segfault. ** Affects: ldns (Ubuntu) Importance: Undecided Status: New -- Missing security patch leading to stack smashing... https://bugs.launchpad.net/bugs/963407 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
