[Merge] lp:~dmitrij.ledkov/ubuntu/natty/htmldoc/fix-ftbfs into lp:ubuntu/htmldoc
Dmitrijs Ledkovs
dmitrij.ledkov at gmail.com
Mon Dec 13 21:18:44 GMT 2010
On 13 December 2010 08:51, Daniel Holbach <daniel.holbach at ubuntu.com> wrote:
> Can you forward the changes to Debian?
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=554803 (linking to x11)
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=537637 (buffer overflow)
>
> According to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=537637 the buffer overflow should be fixed in 1.8.27-4.1. Is your change still necessary in that version?
I have forwarded X11 patch to debian. I did set the correct tags via a
second time around email to control at b.d.o.
I believe it is a separate (though similar) buffer overflow error and
not CVE-2009-3050 / debbug #537637.
I have forwarded my comments from http://pad.lv/688730 to existing
upstream bug http://www.htmldoc.org/str.php?L235 (bug watch not
supported). It is specific to gcc-4.5 and optimisation -O1 or higher
(my findings)
I will try to investigate further. I do not know if it is exploitable.
With best regards,
Dmitrijs.
--
https://code.launchpad.net/~dmitrij.ledkov/ubuntu/natty/htmldoc/fix-ftbfs/+merge/43393
Your team Ubuntu Sponsors Team is requested to review the proposed merge of lp:~dmitrij.ledkov/ubuntu/natty/htmldoc/fix-ftbfs into lp:ubuntu/htmldoc.
More information about the Ubuntu-sponsors
mailing list