Your message dated Tue, 18 May 2010 02:53:47 -0400
with message-id <[email protected]>
and subject line fixed
has caused the Debian Bug report #424993,
regarding iputils-tracepath: tracepath6 sends using an uninitialized buffer
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
424993: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=424993
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: iputils-tracepath
Version: 3:20070202-1
Hello,
tracepath6 doesn't initialize its buffer in probe_ttl(). This gives
the result that whatever is on the stack is sent over the network. In
my case, parts of /etc/hosts was sent as well as the target's
hostname.
As this seemed like a security issue I asked the security team for
advise before submitting this bug. I've now been advised by Moritz
Muehlenhoff that this bug does not warrant a DSA, but that you could
fix it in a stable point update since the patch is small and obvious.
--- tracepath6.c.orig 2007-05-17 14:24:40.000000000 +0200
+++ tracepath6.c 2007-05-17 14:23:19.000000000 +0200
@@ -242,6 +242,7 @@
char sndbuf[mtu];
struct probehdr *hdr = (struct probehdr*)sndbuf;
+ memset(sndbuf, 0, mtu);
restart:
for (i=0; i<10; i++) {
--
Göran Weinholt <[email protected]>
20 JUSTICE KENNEDY: That seems odd. I mean,
21 Microsoft doesn't say please buy our disk because it's
22 the prettiest disk in the business.
--- End Message ---
--- Begin Message ---
the fix has propagated through NEW.
--- End Message ---
