This bug was fixed in the package glibc - 2.7-10ubuntu6
---------------
glibc (2.7-10ubuntu6) hardy-security; urgency=low
* SECURITY UPDATE: integer overflow in strfmon() might lead to arbitrary
code execution.
- debian/patches/any/git-strfmon-overflow.diff: backport from upstream.
- CVE-2008-1391
* SECURITY UPDATE: newlines not escaped in /etc/mtab.
- debian/patches/any/git-mntent-newline-escape.diff: upstream fixes.
- CVE-2010-0296
* SECURITY UPDATE: arbitrary code execution from ELF headers (LP: #542197).
- debian/patches/any/git-fix-dtag-cast.diff: upstream fixes.
- CVE-2010-0830
* debian/patches/any/git-readdir-padding.diff: fix readdir padding when
processing getdents64() in a 32-bit execution environment (LP: #392501).
-- Kees Cook <[email protected]> Wed, 19 May 2010 16:59:18 -0700
--
readdir_r smashes stack on long dir entry
https://bugs.launchpad.net/bugs/392501
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
