Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 133699
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Sune Kloppenborg Jeppesen <jaervosz@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 133699 depends on: 130742 Show dependency tree
Bug 133699 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-05-18 08:43 0000 
Stack trace:


Other information:
I can confirm the problem, but I cannot confirm original report analysis:

vsprintf (buf, fmt, *args2) correctly returns:
 buf = (gchar *) 0xebb4a0 "Failed to load:\nImage file '%p%p%p%p.bmp' contains
no data"

The real problem seems to be message_create_dialog(), which provides the string
message_format to gtk_message_dialog_new(), which is defined as
GtkWidget*  gtk_message_dialog_new          (GtkWindow *parent,
                                             GtkDialogFlags flags,
                                             GtkMessageType type,
                                             GtkButtonsType buttons,
                                             const gchar *message_format,
                                             ...);

Affected are all versions except the old ones using gtk_label_new()

I am not sure about correctness of alloc = nearest_pow (MAX(len + 1, 1024));
Maybe 1024 should be MAXPATHLEN.

And I don't know, why exactly there are two variables with the same varargs
contents - one is analysed to get the proper length, one is used for
formatting.

------- Comment #1 From Stefan Cornelius (RETIRED) 2006-05-18 08:56:01 0000 ------- 
gnome-office please provide fixed ebuilds, thank you.

------- Comment #2 From Stefan Cornelius (RETIRED) 2006-05-25 12:07:24 0000 ------- 
any news?

------- Comment #3 From John N. Laliberte (RETIRED) 2006-05-30 09:06:41 0000 ------- 
new ebuild (dia-0.95.1.ebuild) in tree, fix for this sec bug should be in this
version.

------- Comment #4 From Stefan Cornelius (RETIRED) 2006-05-30 09:10:16 0000 ------- 
Thanks a lot John.

Arches please test dia-0.95.1 and mark stable, thanks.

------- Comment #5 From Tobias Scherbaum 2006-05-30 11:03:02 0000 ------- 
ppc stable

------- Comment #6 From Markus Rothe 2006-05-30 12:27:00 0000 ------- 
stable on ppc64

------- Comment #7 From Chris Gianelloni (RETIRED) 2006-05-30 13:11:35 0000 ------- 
Stable on amd64 and x86...

------- Comment #8 From Gustavo Zacarias (RETIRED) 2006-05-30 14:23:24 0000 ------- 
sparc stable.

------- Comment #9 From Thomas Cort (RETIRED) 2006-05-31 10:13:57 0000 ------- 
alpha done.

------- Comment #10 From Sune Kloppenborg Jeppesen 2006-06-07 10:43:30 0000 ------- 
GLSA 200606-03

ia64 don't forget to mark stable to benifit from the GLSA.
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug