Package: libcdk5
Version: 5.0.20060507-1
Severity: normal
Tags: patch
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The calendar widget segfaults when you call activateCDKCalendar().
Found the problem to be caused by a classic buffer overflow: in line
462 of calendar.c, the temp[] buffer is initialised at temp[10]. Into
this buffer is written the month name, a comma and space, and the day
of the month. This is clearly too small: while the biggest month name
(September) will fit (just), the rest of the string will not. Changing
the buffer size to a somewhat arbitrary value of 20 fixed the problem:
------------- Cut here -------------
diff -uNr libcdk5-5.0.20060507.orig/calendar.c libcdk5-5.0.20060507/calendar.c
- --- libcdk5-5.0.20060507.orig/calendar.c 2006-05-04 20:27:45.000000000
-0400
+++ libcdk5-5.0.20060507/calendar.c 2007-11-22 10:35:21.572076953 -0500
@@ -459,7 +459,7 @@
int day = 1;
int x, y;
int save_y = -1, save_x = -1;
- - char temp[10];
+ char temp[20];
for (x = 1; x <= 6; x++)
{
------------- Cut here -------------
Presumably the addition of the date was an afterthought, and the
author tested it in May.
Note that this bug affects any CDK programs that use the calendar widget,
including those using libcdk-perl.
.....Ron
- -- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.23.8-khufu-1 (PREEMPT)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages libcdk5 depends on:
ii libc6 2.6.1-1+b1 GNU C Library: Shared libraries
libcdk5 recommends no packages.
- -- no debconf information
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHRaUyitqjxNhsdN4RAhidAJ4qtil33+ubAPWhSWmrj8pTI0/h4QCfZhf+
canAePl8/d1xpHZYqGvZ+xk=
=KChe
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
