Bug#562178: icedove: does unnecessary seek without error checking on .signature
Tim Connors
reportbug at rather.puzzling.org
Wed Dec 23 14:00:43 GMT 2009
Package: icedove
Version: 2.0.0.22-1.1
Severity: normal
If .signature happens to be a named pipe with a program feeding text
into that named pipe, then icedove does *cough* interesting *cough*
things:
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
[pid 20697] lseek(47, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
Error checking is good, mmmkay? Reading a .signature file ought not
be any more complicated that while (!eof) { sig+=readline }
Playing around with seek when unnecessary seems just silly (as well as
not very UNIX like).
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.31-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages icedove depends on:
ii debianutils 3.2.2 Miscellaneous utilities specific t
ii fontconfig 2.6.0-4 generic font configuration library
ii libatk1.0-0 1.28.0-1 The ATK accessibility toolkit
ii libc6 2.10.2-2 GNU C Library: Shared libraries
ii libcairo2 1.8.8-2 The Cairo 2D vector graphics libra
ii libfontconfig1 2.6.0-4 generic font configuration library
ii libfreetype6 2.3.11-1 FreeType 2 font engine, shared lib
ii libgcc1 1:4.4.2-3 GCC support library
ii libglib2.0-0 2.22.2-2 The GLib library of C routines
ii libgtk2.0-0 2.18.3-1 The GTK+ graphical user interface
ii libhunspell-1.2-0 1.2.8-5 spell checker and morphological an
ii libjpeg62 6b-15 The Independent JPEG Group's JPEG
ii libnspr4-0d 4.8.2-1 NetScape Portable Runtime Library
ii libnss3-1d 3.12.4-1 Network Security Service libraries
ii libpango1.0-0 1.26.1-1 Layout and rendering of internatio
ii libpng12-0 1.2.40-1 PNG library - runtime
ii libstdc++6 4.4.2-3 The GNU Standard C++ Library v3
ii libx11-6 2:1.3.2-1 X11 client-side library
ii libxft2 2.1.13-3 FreeType-based font drawing librar
ii libxinerama1 2:1.0.3-2 X11 Xinerama extension library
ii libxrender1 1:0.9.5-1 X Rendering Extension client libra
ii libxt6 1:1.0.7-1 X11 toolkit intrinsics library
ii psmisc 22.8-1 utilities that use the proc file s
ii zlib1g 1:1.2.3.3.dfsg-15 compression library - runtime
icedove recommends no packages.
Versions of packages icedove suggests:
pn icedove-gnome-support <none> (no description available)
ii latex-xft-fonts 1.6.4-1 TrueType versions of some TeX font
ii libthai0 0.1.12-1 Thai language support library
-- no debconf information
More information about the Ubuntu-mozillateam
mailing list