Launchpad itself

[security] Possible DoS against archiveuploader

Bug #537267 reported by Michael Casadevall on 2010-03-11

256

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Launchpad itself	Fix Released	Critical	Julian Edwards	Launchpad itself 10.03

Bug Description

There is a possible DoS in archiveuploader involving handling of debian/copyright. As of writing, debian/copyright is copied into SourceReleasePackages on a package upload, but there is no size constant. As a result, its possible to upload up to a 2GiB debian/copyright file (the max size of a postgreSQL text field) in very small source packages. It would be trivial to bomb a PPA with several of these bomb packages, and bring down the database cluster due to lack of disk space or other Bad Things(tm).

Tags:

Related branches

lp:~julian-edwards/launchpad/copyright-size-bug-537267 (Merged)

Julian Edwards (julian-edwards) on 2010-03-11

Changed in soyuz:
status:	New → Triaged
importance:	Undecided → Critical
assignee:	nobody → Julian Edwards (julian-edwards)
milestone:	none → 10.03
status:	Triaged → In Progress
tags:	added: soyuz-upload

Revision history for this message

Ursula Junque (ursinha) wrote on 2010-03-13: Bug fixed by a commit

Fixed in stable r10503 <http://bazaar.launchpad.net/~launchpad-pqm/launchpad/stable/revision/10503>

Changed in soyuz:
status:	In Progress → Fix Committed
tags:	added: qa-needstesting

Julian Edwards (julian-edwards) on 2010-03-15

Changed in soyuz:
status:	Fix Committed → Fix Released
visibility:	private → public

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.