Debdiff attached, which backports the upstream fix. Note that the return value of snprintf isn't being checked, which ideally it should be to code this defensively. But that's what upstream have done, and with 32-bit integers an 80-byte buffer will always be big enough in this case, so I think it is acceptable for Precise.
I have test built this, but have not done any further testing as I don't have suitable hardware available. This is one of those cases where the fix is trivial yet testing is very awkward. ** Patch added: "mdadm.debdiff" https://bugs.launchpad.net/ubuntu/+source/mdadm/+bug/946758/+attachment/3212980/+files/mdadm.debdiff -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/946758 Title: Format string overflow in Monitor.c:check_array To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mdadm/+bug/946758/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
