Your message dated Wed, 07 Sep 2005 09:17:13 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#310184: fixed in openssl 0.9.7g-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 22 May 2005 10:58:01 +0000
>From [EMAIL PROTECTED] Sun May 22 03:58:01 2005
Return-path: <[EMAIL PROTECTED]>
Received: from smtp-vbr12.xs4all.nl [194.109.24.32]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DZo9g-00079Q-00; Sun, 22 May 2005 03:58:00 -0700
Received: from pomme (mvz.xs4all.nl [80.126.4.68])
by smtp-vbr12.xs4all.nl (8.12.11/8.12.11) with ESMTP id j4MAvxpk048219;
Sun, 22 May 2005 12:57:59 +0200 (CEST)
(envelope-from [EMAIL PROTECTED])
Received: from matijs by pomme with local (Exim 3.36 #1 (Debian))
id 1DZo9i-0004SM-00; Sun, 22 May 2005 12:58:02 +0200
Content-Type: multipart/mixed; boundary="===============1093797115=="
MIME-Version: 1.0
From: Matijs van Zuijlen <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: openssl: garbled error message when verifying smime message
X-Mailer: reportbug 3.12
Date: Sun, 22 May 2005 12:58:02 +0200
Message-Id: <[EMAIL PROTECTED]>
Sender: Matijs van Zuijlen <[EMAIL PROTECTED]>
X-Virus-Scanned: by XS4ALL Virus Scanner
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
This is a multi-part MIME message sent by reportbug.
--===============1093797115==
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by smtp-vbr12.xs4all.nl id
j4MAvxpk048219
Package: openssl
Version: 0.9.7g-1
Severity: normal
Tags: patch
When the smime application encounters the wrong type of signature[1], the
type name is garbled before it is copied to the error message. The result
is output like so:
Error reading S/MIME message
17130:error:2107A08D:PKCS7 routines:SMIME_read_PKCS7:sig invalid mime
type:pk7_mime.c:281:type: type=06=D8=88ication/pgp-signature
The attached patch solves the problem by creating the error message befor=
e
freeing the data structure that contains the type name.
[1] This occurs when mutt tries to verify a message that is signed both
with pgp and with smime.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.8-powerpc
Locale: LANG=3Den_US.UTF-8, LC_CTYPE=3Den_US.UTF-8 (charmap=3DUTF-8)
Versions of packages openssl depends on:
ii libc6 2.3.2.ds1-22 GNU C Library: Shared librar=
ies an
ii libssl0.9.7 0.9.7g-1 SSL shared libraries
-- no debconf information
--===============1093797115==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Disposition: attachment; filename="openssl.patch"
Content-Transfer-Encoding: 7bit
--- openssl-0.9.7g/crypto/pkcs7/pk7_mime.c.orig 2005-05-22 11:56:41.132565857
+0200
+++ openssl-0.9.7g/crypto/pkcs7/pk7_mime.c 2005-05-22 11:56:47.829394714
+0200
@@ -277,9 +277,9 @@
if(strcmp(hdr->value, "application/x-pkcs7-signature") &&
strcmp(hdr->value, "application/pkcs7-signature")) {
- sk_MIME_HEADER_pop_free(headers, mime_hdr_free);
PKCS7err(PKCS7_F_SMIME_READ_PKCS7,PKCS7_R_SIG_INVALID_MIME_TYPE);
ERR_add_error_data(2, "type: ", hdr->value);
+ sk_MIME_HEADER_pop_free(headers, mime_hdr_free);
sk_BIO_pop_free(parts, BIO_vfree);
return NULL;
}
--===============1093797115==--
---------------------------------------
Received: (at 310184-close) by bugs.debian.org; 7 Sep 2005 16:25:34 +0000
>From [EMAIL PROTECTED] Wed Sep 07 09:25:34 2005
Return-path: <[EMAIL PROTECTED]>
Received: from katie by spohr.debian.org with local (Exim 3.36 1 (Debian))
id 1ED2bp-0001UD-00; Wed, 07 Sep 2005 09:17:13 -0700
From: Christoph Martin <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.56 $
Subject: Bug#310184: fixed in openssl 0.9.7g-2
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Wed, 07 Sep 2005 09:17:13 -0700
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-CrossAssassin-Score: 6
Source: openssl
Source-Version: 0.9.7g-2
We believe that the bug you reported is fixed in the latest version of
openssl, which is due to be installed in the Debian FTP archive:
libcrypto0.9.7-udeb_0.9.7g-2_i386.udeb
to pool/main/o/openssl/libcrypto0.9.7-udeb_0.9.7g-2_i386.udeb
libssl-dev_0.9.7g-2_i386.deb
to pool/main/o/openssl/libssl-dev_0.9.7g-2_i386.deb
libssl0.9.7_0.9.7g-2_i386.deb
to pool/main/o/openssl/libssl0.9.7_0.9.7g-2_i386.deb
openssl_0.9.7g-2.diff.gz
to pool/main/o/openssl/openssl_0.9.7g-2.diff.gz
openssl_0.9.7g-2.dsc
to pool/main/o/openssl/openssl_0.9.7g-2.dsc
openssl_0.9.7g-2_i386.deb
to pool/main/o/openssl/openssl_0.9.7g-2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Christoph Martin <[EMAIL PROTECTED]> (supplier of updated openssl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 7 Sep 2005 15:32:54 +0200
Source: openssl
Binary: libssl-dev openssl libcrypto0.9.7-udeb libssl0.9.7
Architecture: source i386
Version: 0.9.7g-2
Distribution: unstable
Urgency: low
Maintainer: Debian OpenSSL Team <[EMAIL PROTECTED]>
Changed-By: Christoph Martin <[EMAIL PROTECTED]>
Description:
libcrypto0.9.7-udeb - crypto shared library - udeb (udeb)
libssl-dev - SSL development libraries, header files and documentation
libssl0.9.7 - SSL shared libraries
openssl - Secure Socket Layer (SSL) binary and related cryptographic tools
Closes: 239956 309274 310184 310489 316689 318750 321721
Changes:
openssl (0.9.7g-2) unstable; urgency=low
.
* really include nl translation
* remove special ia64 code from rc4 code to make the abi compatible to
older 0.9.7 versions (closes: #310489, #309274)
* fix compile flag for debian-ppc64 (closes: #318750)
* small fix in libssl0.9.7.postinst (closes: #239956)
* fix pk7_mime.c to prevent garbled messages because of to early memory
free (closes: #310184)
* include vietnamese debconf translation (closes: #316689)
* make optimized i386 libraries have non executable stack (closes:
#321721)
* remove leftover files from ssleay
* move from dh_installmanpages to dh_installman
* change Maintainer to [EMAIL PROTECTED]
Files:
4efa686485ac94f65ebdfdcc1184b69f 714 utils optional openssl_0.9.7g-2.dsc
b59f4086f4dca850f7a0a1e86f654a38 29026 utils optional openssl_0.9.7g-2.diff.gz
1536ad0806b8d8162cc0479b3189877c 916774 utils optional
openssl_0.9.7g-2_i386.deb
38b964c2bfb987edfc33d6d6065d3c7a 2284028 libs standard
libssl0.9.7_0.9.7g-2_i386.deb
4b827dbcd9cb663d35b9e269620f5679 457138 debian-installer optional
libcrypto0.9.7-udeb_0.9.7g-2_i386.udeb
c2e71be1fdfded36e744b6df3148430b 2572166 libdevel optional
libssl-dev_0.9.7g-2_i386.deb
package-type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFDHvgUgeVih7XOVJcRAj+pAKCZ74plvBNpE+s6rGH++muIO8lLsgCghDGQ
Sf0Fc6p6rbJ42W/NDJC4Z7A=
=Ejgt
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
