Comment 31 for bug 11419

Message-ID: <email address hidden>
Date: Thu, 30 Dec 2004 12:09:32 +0100
From: Martin Schulze <email address hidden>
To: Frank =?iso-8859-1?Q?K=FCster?= <email address hidden>
Cc: <email address hidden>,
 Debian Security Team <email address hidden>
Subject: Re: Bug#286984: CAN-2004-1125: Arbitrary code execution in tetex-bin

Frank K=FCster wrote:
> Martin Schulze <email address hidden> schrieb:
>=20
> > Frank K=FCster wrote:
> >> Martin Schulze <email address hidden> schrieb:
> >
> >> > I'm attaching the patch we're using for fixing woody.
> >>=20
> >> The patch was empty.=20
> >
> > Uh? How did that happen?
>=20
> Don't know. I would still be interested.

It's basically the same as in this bug report, but it's bogus
as you correctly pointed out, since the program flow will end
in the case statement that is able to detect wrong values of
nComps.

Regards,

 Joey

--=20
Ten years and still binary compatible. -- XFree86