Your message dated Wed, 07 Mar 2007 02:17:02 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#411293: fixed in asterisk-chan-capi 0.7.1-1.1 has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database)
--- Begin Message ---Package: libcapi20-3 Version: 1:3.9.20060704-2.2 Severity: important the bufprint routine used by capi_cmsg2str does an unbounded vsprintf into a 8192 byte buffer, perhaps hoping it's big enough. It isn't. Looks like someone needs some vsnprintf like training wheels. (around line 898 in "convert.c") #4 0xb7c9e811 in raise () from /lib/tls/i686/cmov/libc.so.6 #5 0xb7c9ffb9 in abort () from /lib/tls/i686/cmov/libc.so.6 #6 0xb6bbf21c in bufprint (fmt=0xb6bc061f " %02x") at convert.c:910 #7 0xb6bbf63f in protocol_message_2_pars (cmsg=0xb69d4234, level=2) at convert.c:927 #8 0xb6bbf34c in protocol_message_2_pars (cmsg=0xb69d4234, level=1) at convert.c:1003 #9 0xb6bbf722 in capi_cmsg2str (cmsg=0xb69d4234) at convert.c:1045 #10 0xb6be4d16 in capidev_loop (data=0x0) at chan_capi.c:4051 #11 0x080ed2c0 in dummy_start (data=0x81e6ee8) at utils.c:545 #12 0xb7f16240 in start_thread () from /lib/tls/i686/cmov/libpthread.so.0 #13 0xb7d4132e in clone () from /lib/tls/i686/cmov/libc.so.6 (gdb) frame 7 #7 0xb6bbf63f in protocol_message_2_pars (cmsg=0xb69d4234, level=2) at convert.c:927 927 bufprint(" %02x", *m); (gdb) p p - buf $1 = 8194 (gdb) p *cmsg $2 = {ApplId = 1, Command = 2 '\002', Subcommand = 130 '\202', Messagenumber = 5019, adr = {adrController = 257, adrPLCI = 257, adrNCCI = 257}, AdditionalInfo = CAPI_COMPOSE, B1configuration = 0x0, B1protocol = 0, B2configuration = 0x0, B2protocol = 0, B3configuration = 0x0, B3protocol = 0, BC = 0xb6b4eb5e "\003\200\220�", BChannelinformation = 0xb6b4eb67 "", BProtocol = CAPI_COMPOSE, CalledPartyNumber = 0xb6b4eb5a "", CalledPartySubaddress = 0xb6b4eb5c "", CallingPartyNumber = 0xb6b4eb5b "", CallingPartySubaddress = 0xb6b4eb5d "", CIPmask = 0, CIPmask2 = 0, CIPValue = 16, Class = 0, ConnectedNumber = 0x0, ConnectedSubaddress = 0x0, Data32 = 0, Data64 = 0, DataHandle = 0, DataLength = 0, FacilityConfirmationParameter = 0x0, Facilitydataarray = 0xb6b4eb6a "", FacilityIndicationParameter = 0x0, FacilityRequestParameter = 0x0, FacilityResponseParameters = 0x0, FacilitySelector = 0, Flags = 0, Function = 0, Globalconfiguration = 0x0, HLC = 0xb6b4eb63 "\002\221\201\004", Info = 0, InfoElement = 0x0, InfoMask = 0, InfoNumber = 0, Keypadfacility = 0xb6b4eb68 "", LLC = 0xb6b4eb62 "", ManuData = 0x0, ManuID = 0, NCPI = 0x0, Reason = 0, Reason_B3 = 0, Reject = 0, Useruserdata = 0xb6b4eb69 "", SendingComplete = 0xb6b4eb6b '�' <repeats 127 times>, Data = 0x0, l = 31, p = 14, par = 0xb6bc0bbc "\003\024\016\020\017\021\v)#\004\f(0\0342\001\001", m = 0xb6b4eb4c "\037", buf = '\0' <repeats 179 times>} -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-jh-1 Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages libcapi20-3 depends on: ii libc6 2.3.6.ds1-10 GNU C Library: Shared libraries libcapi20-3 recommends no packages. -- no debconf information
--- End Message ---
--- Begin Message ---Source: asterisk-chan-capi Source-Version: 0.7.1-1.1 We believe that the bug you reported is fixed in the latest version of asterisk-chan-capi, which is due to be installed in the Debian FTP archive: asterisk-chan-capi_0.7.1-1.1.diff.gz to pool/main/a/asterisk-chan-capi/asterisk-chan-capi_0.7.1-1.1.diff.gz asterisk-chan-capi_0.7.1-1.1.dsc to pool/main/a/asterisk-chan-capi/asterisk-chan-capi_0.7.1-1.1.dsc asterisk-chan-capi_0.7.1-1.1_i386.deb to pool/main/a/asterisk-chan-capi/asterisk-chan-capi_0.7.1-1.1_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Ben Hutchings <[EMAIL PROTECTED]> (supplier of updated asterisk-chan-capi package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 7 Mar 2007 01:58:53 +0000 Source: asterisk-chan-capi Binary: asterisk-chan-capi Architecture: source i386 Version: 0.7.1-1.1 Distribution: unstable Urgency: high Maintainer: Debian VoIP Team <[EMAIL PROTECTED]> Changed-By: Ben Hutchings <[EMAIL PROTECTED]> Description: asterisk-chan-capi - Common ISDN API 2.0 implementation for Asterisk Closes: 411293 Changes: asterisk-chan-capi (0.7.1-1.1) unstable; urgency=high . * Non-maintainer upload * Protect calls to capi_cmsg2str and use of its buffer with a mutex. (Closes: #411293) Files: 9c1c3c7fe2e017993e478f710e8f54f4 934 comm optional asterisk-chan-capi_0.7.1-1.1.dsc edb4cfd5aeefdaf6bcf848c600c58bde 6085 comm optional asterisk-chan-capi_0.7.1-1.1.diff.gz 1899621a4b2fd5d7f50774396ab26b8b 62660 comm optional asterisk-chan-capi_0.7.1-1.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFF7h0w79ZNCRIGYgcRAjtjAJ421PMBx5wulHijHWYTzIyvNdXC0wCeIwxh +bBg4Xx3ThoOrASmnBMeSZo= =51Jj -----END PGP SIGNATURE-----
--- End Message ---
