[Pkg-cryptsetup-devel] Bug#364529: cryptsetup: non-terminal input
truncated at 32 characters
Kees Cook
kees at outflux.net
Mon Apr 24 01:50:44 UTC 2006
Package: cryptsetup
Version: 2:1.0.2+1.0.3-rc3-1
Severity: important
When sending a pass-phrase over stdin without a terminal, the input
string is truncated to 32 characters. Using "ltrace", it is clearly
visible. This rendered my mounts with long pass-phrases unmountable,
and I had to down-grade.
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.15-1-686
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Versions of packages cryptsetup depends on:
ii dmsetup 2:1.02.03-1 The Linux Kernel Device Mapper use
ii libc6 2.3.6-7 GNU C Library: Shared libraries
ii libdevmapper1.01 2:1.01.04-2 The Linux Kernel Device Mapper use
ii libgcrypt11 1.2.2-1 LGPL Crypto library - runtime libr
ii libgpg-error0 1.2-1 library for common error values an
ii libpopt0 1.7-5 lib for parsing cmdline parameters
cryptsetup recommends no packages.
-- no debconf information
More information about the Pkg-cryptsetup-devel
mailing list