Package: powertop
Version: 1.11-1
Severity: normal
Tags: lenny

powertop 1.11-1 is limited to 5000 lines in the kernel config file 
(/boot/config-*).
The latest kernel exceeds this hard coded limit:

# wc /boot/config-2.6.35-rc5-amd64 
  5024   8611 115367 /boot/config-2.6.35-rc5-amd64

Newer versions of powertop increase the limit to 10000 but still crash when the
limit is exceeded (see file config.c).

This is a potential security problem (out-of-bounds array access).

I have just sent a patch which fixes the bug to Auke Kok (author of powertop).

-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-proposed-updates'), (500, 
'proposed-updates'), (500, 'experimental'), (500, 'unstable'), (500, 'stable'), 
(1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.35-rc5-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages powertop depends on:
ii  libc6                     2.11.2-2       Embedded GNU C Library: Shared lib
ii  libncursesw5              5.7+20100313-2 shared libraries for terminal hand

powertop recommends no packages.

Versions of packages powertop suggests:
ii  cpufrequtils                  007-1      utilities to deal with the cpufreq
pn  laptop-mode-tools             <none>     (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to