Debian
tetex-bin package

  1. Bug #26650
  2. Comment #66

Comment 66 for bug 26650

Revision history for this message
In , Frank Küster (frank-kuesterei) wrote : Re: Bug#342292: tetex-bin: Multiple exploitable heap overflows in embedded xpdf copy

Martin Pitt <email address hidden> wrote:

> Frank Küster [2005-12-11 13:27 +0100]:
>
>> Am I correct that the other issues that Florian found are not addressed
>> by any patch yet, and have not yet been widely published? Should I
>> delay an upload to sid until this can be fixed, too?
>
> Hm, I'm not aware of any additional issues. Florian raised and
> explained why 'p = f1*f2; if (p/f1 != f2)' is flawed, so I updated the
> patch to not use it any more. Are there any additional issues I
> missed?

He said that the function gmallocn is flawed; but you're right, this
does not affect tetex-bin (yet), only xpdf.

Regards, Frank
--
Frank Küster
Inst. f. Biochemie der Univ. Zürich
Debian Developer