While 16 bytes should be enough for any IPv4 address, I wonder if this was resolving AAAA records for the host? Regardless, the crash was still seen.
** Bug watch added: Debian Bug tracker #603436 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=603436 ** Also affects: pam-pgsql (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=603436 Importance: Unknown Status: Unknown -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/722386 Title: PAM pgsql buffer overflow when dealing with long addresses -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
