Your message dated Tue, 03 Feb 2026 12:50:08 +0000
with message-id <[email protected]>
and subject line Bug#882529: fixed in stenc 2.0.1-0.1
has caused the Debian Bug report #882529,
regarding stenc: Use after free memory when the tape drive is positioned at the
end of data
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
882529: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882529
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: stenc
Version: 1.0.7-2~bpo8+1
Severity: normal
Tags: upstream patch
Dear Maintainer,
Today, I backported this package to jessie. Notice, this package require
automake1.11 in order to be build on jessie.
I have got two drives into a library and stenc works as expected except
this use after free bug which occur when the tape drive is positioned at
the end of data.
To reproduice the bug:
# mt -f /dev/nst0 eod
# stenc -f /dev/nst0 --detail
Status for /dev/nst0
--------------------------------------------------
Device Mfg: HP
Product ID: Ultrium 5-SCSI
Product Revision: Z63U
Drive Encryption: on
Drive Output: Decrypting
Unencrypted data not outputted
Drive Input: Encrypting
Protecting from raw read
Key Instance Counter: 3
Encryption Algorithm: 1
Drive Key Desc.(uKAD): Key n#2 for AAA013
Volume Encryption: Unable to determine
*** Error in `stenc': double free or corruption (fasttop): 0x000055ad30f77010
***
An upstream patch exists, see:
https://sourceforge.net/p/stenc/code/ci/7c8e38048766f0c91fe2f11863a0c0450c34c79b/
-- System Information:
Debian Release: 8.9
APT prefers oldstable
APT policy: (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.9.64-storiq64-opteron (SMP w/8 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages stenc depends on:
ii libc6 2.19-18+deb8u10
ii libgcc1 1:4.9.2-10
ii libstdc++6 4.9.2-10
stenc recommends no packages.
stenc suggests no packages.
-- no debconf information
Index: stenc-1.0.7/src/scsiencrypt.cpp
===================================================================
--- stenc-1.0.7.orig/src/scsiencrypt.cpp
+++ stenc-1.0.7/src/scsiencrypt.cpp
@@ -174,6 +174,7 @@ SSP_NBES* SSPGetNBES(string tapeDevice,b
if(status->nbes.encryptionStatus!=0x01)break;
if(moves>=MAX_TAPE_READ_BLOCKS)break;
delete status;
+ status=NULL;
if(!moveTape(tapeDevice,1,true))break;
moves++;
status=SSPGetNBES(tapeDevice,false);
--- End Message ---
--- Begin Message ---
Source: stenc
Source-Version: 2.0.1-0.1
Done: Andreas Tille <[email protected]>
We believe that the bug you reported is fixed in the latest version of
stenc, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Tille <[email protected]> (supplier of updated stenc package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 24 Jan 2026 12:43:06 +0100
Source: stenc
Architecture: source
Version: 2.0.1-0.1
Distribution: unstable
Urgency: medium
Maintainer: Denys Berkovskyy <[email protected]>
Changed-By: Andreas Tille <[email protected]>
Closes: 882529 1088670
Changes:
stenc (2.0.1-0.1) unstable; urgency=medium
.
* Non-maintainer upload.
.
[ Andreas Tille ]
* New upstream version
Closes: #882529, #1088670
* Maintain package in Debian team
* New Homepage
* d/watch:
- version=5
- Point to Github
* Standards-Version: 4.7.3 (routine-update)
* debhelper-compat 13 (routine-update)
* Remove Priority field to comply with Debian Policy 4.7.3 (routine-
update)
* d/copyright: Update
* Build-Depends: pkgconf, pandoc
.
[ Christopher Bock ]
* shell-completions
Checksums-Sha1:
9e255bad05212854e3cf52deb65447546c4a0f10 1866 stenc_2.0.1-0.1.dsc
6f2d59ffd2e3a6f0ab2ea5cdd6a17986cdb4fb5c 166668 stenc_2.0.1.orig.tar.gz
4276753b6b56fbcb18087455b58c0418eb07ac1c 1988 stenc_2.0.1-0.1.debian.tar.xz
90d559a7960f8a4eb2c87058e3c8de6975813427 6250 stenc_2.0.1-0.1_amd64.buildinfo
Checksums-Sha256:
88e0e294470fe2180e7de20d8c87e3976e1e175d4381f59d95cc4620f5b86f59 1866
stenc_2.0.1-0.1.dsc
676d4018555042dddc6e2bfed2e6194fbb877e37596c3e660616c1e1b3950e5f 166668
stenc_2.0.1.orig.tar.gz
e8c836850129baac84d9df325f7886db5f168e6cbd27517a6522b4051df72d53 1988
stenc_2.0.1-0.1.debian.tar.xz
4ccc2944fdcf88e59ec6099f6b585fa4c302899725dfe776dcc5dc7e98681cc1 6250
stenc_2.0.1-0.1_amd64.buildinfo
Files:
6a73aeb90bcfe6330c18c691d9ae5651 1866 admin optional stenc_2.0.1-0.1.dsc
c92bfd13864a6531f71da962b758b299 166668 admin optional stenc_2.0.1.orig.tar.gz
9720afcf31ed7cfea5271b82687105c4 1988 admin optional
stenc_2.0.1-0.1.debian.tar.xz
92c46db996b707c860905aa3f3100fa6 6250 admin optional
stenc_2.0.1-0.1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJFBAEBCgAvFiEE8fAHMgoDVUHwpmPKV4oElNHGRtEFAml0s34RHHRpbGxlQGRl
Ymlhbi5vcmcACgkQV4oElNHGRtHj+A//cqWxd1Oz/L+z2JNsiiwnpiFKMqRAwNyY
rDdMpOzcG7vvmiPUKIOha4Dv5hu7KR0uhDCKSy1AbnX7R8lYT3T3S9ib+BJrHgS/
6qv2NR1SkgyMir4iUGaDOTji7ONwAUEWOTGiV1fuwwUw1N/GjGkl6fgLtvim9Cy5
iDEVhcvr68DIIJtoRxe5dGpb+uy3FgeXKQQjC60tjgxKpcnnLJD6F2eBPeOglcE+
QLiu/NoSc2q/u4V3lQlNC1FLfdSsglhinBCeFCRtwzniJuIw7tKkp+o2cQkIUy0F
RxpzxAhaHBKOCaTK9PcXvV/IHXJGApIPt5DMb5HHrDAkkD2qtLjSUBeVw6eWsmX1
tPdTNyI3JcWAdoG0/aZSustNEMGIzYR8E/I+JfES/tuUWTQ5Htj0wakEBAVLhPVt
PgLI+vZyq0n+H0dhxTMmbzQCEXAxU+99TOlNrKNrIJHOO5xD1B8lkxBfAuIpcTjC
iUB40aJgvGna/ROVeaC5ozmp6eL/r9mQGXe472vBo/JchgbSmSknDujPevLzW+34
FWyS2wBl4jthG2Sydzr+OqLHUWI45md0Sg/DFBMuckD3XmE0J7XV+lR3S9UtR++t
pwPX/AYAWMt1gpCzDNj36aV9E3dgHISgn9XDO/wDr7pqPPzNyGy40l1VeoCeIWUq
XYIoW5cjJdU=
=QdqM
-----END PGP SIGNATURE-----
pgplQtnbjsGm1.pgp
Description: PGP signature
--- End Message ---
