Stack smashing while using a lot of connections
Bug #1418778 reported by
Joe Damato
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libfcgi (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Precise |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
The bug described in #933417 which is fixed in Quantal and later appears to be a security issue as it can affect a server processes and cause a DoS. It would be great to get a patched version in 12.04.
I've taken the patch from #933417 and applied it (with no modifications) against the source package for fcgi in 12.04 and bumped the changelog. I've attached a debdiff of these changes to this report.
Please let me know how I can help to get this accepted.
Related branches
information type: | Private Security → Public Security |
Changed in libfcgi (Ubuntu): | |
assignee: | nobody → Ubuntu Security Sponsors Team (ubuntu-security-sponsors) |
assignee: | Ubuntu Security Sponsors Team (ubuntu-security-sponsors) → nobody |
Changed in libfcgi (Ubuntu Precise): | |
status: | New → Confirmed |
Changed in libfcgi (Ubuntu): | |
status: | New → Fix Released |
To post a comment you must log in.
Note on the debdiff: The wrong bug number is present in the debdiff (the old one). Since that bug is now "fixed" we would be using the new bug number here.
I've attached the same debdiff with a one line revision to correct the bug number. Still has the original debdiff author's fingerprints all over it, i just made one revision to the debian/changelog.