Your message dated Thu, 14 Feb 2013 21:47:29 +0000
with message-id <[email protected]>
and subject line Bug#700098: fixed in cfingerd 1.4.3-3.1
has caused the Debian Bug report #700098,
regarding cfingerd: CVE-2013-1049 remote buffer overflow
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
700098: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700098
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: cfingerd
Version: 1.4.3-3
Severity: normal
Tags: patch
User: [email protected]
Usertags: origin-ubuntu raring ubuntu-patch
*** /tmp/tmpntc4Ea/bug_body
In Ubuntu, the attached patch was applied to achieve the following:
* SECURITY UPDATE: fix buffer overflow in rfc1413 (ident) client
(LP: #1104425).
- CVE-2013-1049
This vulnerability to have been introduced by the following:
* Applied IPv6 patch from Mats Erik Andersson
<[email protected]> (closes: Bug#570024)
See dowstream bug report for more information:
https://bugs.launchpad.net/ubuntu/+source/cfingerd/+bug/1104425
Thanks for considering the patch.
-- System Information:
Debian Release: wheezy/sid
APT prefers quantal-updates
APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500,
'quantal-proposed'), (500, 'quantal'), (100, 'quantal-backports')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.5.0-23-generic (SMP w/4 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -u cfingerd-1.4.3/debian/changelog cfingerd-1.4.3/debian/changelog
diff -u cfingerd-1.4.3/src/rfc1413.c cfingerd-1.4.3/src/rfc1413.c
--- cfingerd-1.4.3/src/rfc1413.c
+++ cfingerd-1.4.3/src/rfc1413.c
@@ -25,7 +25,9 @@
* the implementation. Completely rewritten by yours truly to be self-
* contained in a single program. Simple, easy to use.
*/
-#define BUFLEN (2 * INET6_ADDRSTRLEN)
+#define UNAMELEN 64
+#define BUFLEN UNAMELEN + INET6_ADDRSTRLEN + 2
+#define INPUTLEN 256
char *get_rfc1413_data(struct sockaddr_storage * local_addr,
struct sockaddr_storage * peer_addr )
{
@@ -34,7 +36,7 @@
struct sockaddr_storage sin;
struct sockaddr_in *sa4 = (struct sockaddr_in *) &sin;
struct sockaddr_in6 *sa6 = (struct sockaddr_in6 *) &sin;
- char buffer[1024], buf[BUFLEN], uname[64], *bleah;
+ char buffer[1024], buf[INPUTLEN], uname[UNAMELEN], *bleah;
char *cp, *xp;
struct servent *serv;
--- End Message ---
--- Begin Message ---
Source: cfingerd
Source-Version: 1.4.3-3.1
We believe that the bug you reported is fixed in the latest version of
cfingerd, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Salvatore Bonaccorso <[email protected]> (supplier of updated cfingerd package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 09 Feb 2013 18:38:28 +0100
Source: cfingerd
Binary: cfingerd
Architecture: source amd64
Version: 1.4.3-3.1
Distribution: unstable
Urgency: high
Maintainer: Martin Schulze <[email protected]>
Changed-By: Salvatore Bonaccorso <[email protected]>
Description:
cfingerd - configurable finger daemon
Closes: 700098
Changes:
cfingerd (1.4.3-3.1) unstable; urgency=high
.
* Non-maintainer upload.
* [SECURITY] CVE-2013-1049: fix buffer overflow in rfc1413 (ident) client.
Thanks to Malcolm Scott <[email protected]> and Marc Deslauriers
<[email protected]> (Closes: #700098) (LP: #1104425)
Checksums-Sha1:
c924a00c0ecd4c366dd9350f57ce9f85db063673 1636 cfingerd_1.4.3-3.1.dsc
f88b40808f8cdddd1b16040a473fc9a10570e751 21077 cfingerd_1.4.3-3.1.diff.gz
a4674df151730a5f40b1330d3f34d2ce8ad19da6 80176 cfingerd_1.4.3-3.1_amd64.deb
Checksums-Sha256:
e0d4abcc1e2f7cb5a3e678a364a615b5c7a9d0c86c0f0979cec735fc5fa9587b 1636
cfingerd_1.4.3-3.1.dsc
c5347a3f240d6725b000edf358494c0b0d37845bfaefd2712e844b61e178ff08 21077
cfingerd_1.4.3-3.1.diff.gz
881bef70f5c5b00b8fced7a3b9b5b0170e9336716f60e4749159a1c5a5d892d3 80176
cfingerd_1.4.3-3.1_amd64.deb
Files:
e3260f7733e285355506370c5c205b55 1636 net extra cfingerd_1.4.3-3.1.dsc
a734b1b547a1e3fb883c07eeacebcd8d 21077 net extra cfingerd_1.4.3-3.1.diff.gz
fe2134483b5d0683196168bd9b1502a6 80176 net extra cfingerd_1.4.3-3.1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=vcpL
-----END PGP SIGNATURE-----
--- End Message ---
