[Debian-hebrew-package] Re: Small fix for bidiv,
might have security implications
Baruch Even
baruch at debian.org
Sat Jan 7 16:22:41 UTC 2006
Shachar Raindel wrote:
> Hi,
> After having bidiv crashing on me when using it to filter a
> directory listing, I took the time to run it through valgrind. I found
> out that when allocating the Unicode storage strings (unicode_in and
> unicode_out), you allocated 1 char less then the needed amount (it is
> necessary to have a place for the null terminator as well as the whole
> line), therefore overwriting the following heap content with 2 null
> bytes. I haven't tried to exploit this, but it might (though very
> unlikely) be possible to exploit this bug. I attach a patch against
> the 1.4 version of bidiv which fixes this problem (and also frees the
> memory it allocates when it is done with using it).
Thanks for the bug report and the patch, we'll upload a fixed version
shortly and contact the Debian security team to handle the security issue.
Your report was filed as bug #346386 and can be seen at:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346386
Baruch
More information about the Debian-hebrew-package
mailing list