Bug#699912: imview: dangerous use of strncpy
Sebastian Ramacher
sramacher at debian.org
Wed Feb 6 16:33:34 UTC 2013
Source: imview
Version: 1.1.9c-9
Severity: important
Tags: patch
I had a quick look at some of the code of imview and noticed some code
snippets that use the result strncpy in a dangerous way. In
readUserPrefs one can smash the stack if either IMVIEWHOME or HOME have
contain more than DFLTSTRLEN characters since strncpy won't terminate
prefpath in that case.
I didn't check for more occurrences other than those fixed in the patch,
but there might be more.
Regards
--
Sebastian Ramacher
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dangerous-use-of-strncpy.patch
Type: text/x-diff
Size: 1473 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/debian-science-maintainers/attachments/20130206/b7cb9334/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/debian-science-maintainers/attachments/20130206/b7cb9334/attachment.pgp>
More information about the debian-science-maintainers
mailing list