Your message dated Thu, 13 Jul 2006 07:47:03 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#317733: fixed in bird 1.0.11-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: bird
Version: 1.0.4-8
Severity: normal
Hello,
BIRD has some buffer overflows in its handling of command line arguments.
The overflow doesn't seem to have any security impact. They just cause
crashes, which is bad enough.
Here's a session capture showing one of the bugs in action:
$ birdc -s `perl -e 'print "J" x 307;'`
Segmentation fault
--
Juan Alvarez
Fluidsignal Group S.A.
--- End Message ---
--- Begin Message ---
Source: bird
Source-Version: 1.0.11-2
We believe that the bug you reported is fixed in the latest version of
bird, which is due to be installed in the Debian FTP archive:
bird_1.0.11-2.diff.gz
to pool/main/b/bird/bird_1.0.11-2.diff.gz
bird_1.0.11-2.dsc
to pool/main/b/bird/bird_1.0.11-2.dsc
bird_1.0.11-2_i386.deb
to pool/main/b/bird/bird_1.0.11-2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
OndÅej Surý <[EMAIL PROTECTED]> (supplier of updated bird package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 13 Jul 2006 09:37:20 -0400
Source: bird
Binary: bird
Architecture: source i386
Version: 1.0.11-2
Distribution: unstable
Urgency: low
Maintainer: OndÅej Surý <[EMAIL PROTECTED]>
Changed-By: OndÅej Surý <[EMAIL PROTECTED]>
Description:
bird - Internet Routing Daemon
Closes: 317733
Changes:
bird (1.0.11-2) unstable; urgency=low
.
* 003_birdc-fix-buffer-overflow.patch:
+ Fix some command line buffer overflow condition (Closes: #317733)
* 004_fix_ifr_storage_size_unknown.patch
+ Make IPv4 compilable again.
* 005_fix-flex-params.patch
+ New flex is more picky about params, fix that.
* 006_birdc-include-more-headers.patch
+ Fix some more warnings by including correct headers.
* Prepare for dual IPv4 and IPv6 build:
+ Upload IPv4 version right now, previous one was only IPv6
by accident.
Files:
623d71030eb673790f18e73cb2607730 615 net optional bird_1.0.11-2.dsc
d0314a52c9101d57824850de0e638813 4894 net optional bird_1.0.11-2.diff.gz
940f2495c84bc31c44927bf33f7b9201 205172 net optional bird_1.0.11-2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFEtltk9OZqfMIN8nMRAgi6AJ4uXqY6a73nuBZDs9bPFqpZxflyJQCgiTx2
GsehRfPxf3gEAiqXbCC+DhI=
=c1HW
-----END PGP SIGNATURE-----
--- End Message ---
