[Pkg-voip-commits] r5000 - in /pwlib-titan/trunk/debian: changelog patches/00list patches/CVE-2007-4896.dpatch

kilian at alioth.debian.org kilian at alioth.debian.org
Mon Dec 3 13:01:40 UTC 2007 

Author: kilian
Date: Mon Dec  3 13:01:39 2007
New Revision: 5000

URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=5000
Log:
* Fix remote denial of service vulnerability caused
  by a call to PString::vsprintf if the used object already
  contained more than 1000 characters (CVE-2007-4897; Closes: #454139).

Added:
    pwlib-titan/trunk/debian/patches/CVE-2007-4896.dpatch
Modified:
    pwlib-titan/trunk/debian/changelog
    pwlib-titan/trunk/debian/patches/00list

Modified: pwlib-titan/trunk/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib-titan/trunk/debian/changelog?rev=5000&op=diff
==============================================================================
--- pwlib-titan/trunk/debian/changelog (original)
+++ pwlib-titan/trunk/debian/changelog Mon Dec  3 13:01:39 2007
@@ -2,8 +2,11 @@
 
   * Fix debian/watch to use sf.net instead of voxgratia.org (Closes: #453595)
   * Remove symlinks of unused compatibility versions.
-
- -- Kilian Krause <kilian at debian.org>  Sat,  1 Dec 2007 13:10:22 +0100
+  * Fix remote denial of service vulnerability caused
+    by a call to PString::vsprintf if the used object already
+    contained more than 1000 characters (CVE-2007-4897; Closes: #454139).
+
+ -- Kilian Krause <kilian at debian.org>  Mon,  3 Dec 2007 14:01:19 +0100
 
 pwlib-titan (1.11.2-1) unstable; urgency=low
 

Modified: pwlib-titan/trunk/debian/patches/00list
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib-titan/trunk/debian/patches/00list?rev=5000&op=diff
==============================================================================
--- pwlib-titan/trunk/debian/patches/00list (original)
+++ pwlib-titan/trunk/debian/patches/00list Mon Dec  3 13:01:39 2007
@@ -2,3 +2,4 @@
 04_names
 05_hppa
 06_plugins_shared
+CVE-2007-4896.dpatch

Added: pwlib-titan/trunk/debian/patches/CVE-2007-4896.dpatch
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib-titan/trunk/debian/patches/CVE-2007-4896.dpatch?rev=5000&op=file
==============================================================================
--- pwlib-titan/trunk/debian/patches/CVE-2007-4896.dpatch (added)
+++ pwlib-titan/trunk/debian/patches/CVE-2007-4896.dpatch Mon Dec  3 13:01:39 2007
@@ -1,0 +1,20 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## CVE-2007-4897.dpatch by Nico Golde <nion at debian.org>
+##
+## All lines beginning with `## DP:' are a description of the patch.
+## DP: No description.
+
+ at DPATCH@
+diff -urNad pwlib-1.10.10~/src/ptlib/common/contain.cxx pwlib-1.10.10/src/ptlib/common/contain.cxx
+--- pwlib-1.10.10~/src/ptlib/common/contain.cxx        2005-11-30 13:47:41.000000000 +0100
++++ pwlib-1.10.10/src/ptlib/common/contain.cxx 2007-12-03 13:45:00.000000000 +0100
+@@ -2465,7 +2465,7 @@
+   PAssert(SetSize(2000), POutOfMemory);
+   ::vsprintf(theArray+len, fmt, arg);
+ #else
+-  PINDEX size = 0;
++  PINDEX size = len;
+   do {
+     size += 1000;
+     PAssert(SetSize(size), POutOfMemory);
+

More information about the Pkg-voip-commits mailing list