179778 – dev-lang/tcl < 8.4.15 Buffer Overflow

Bug 179778 - dev-lang/tcl < 8.4.15 Buffer Overflow

Summary: dev-lang/tcl < 8.4.15 Buffer Overflow

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://secunia.com/advisories/25401/
Whiteboard:	B2 [ebuild] p-y
Keywords:

Depends on:
Blocks:

Reported:	2007-05-25 17:56 UTC by Pierre-Yves Rofes (RETIRED)
Modified:	2007-05-25 18:01 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Pierre-Yves Rofes (RETIRED) gentoo-dev

2007-05-25 17:56:10 UTC

Martin Lemburg has reported a security issue in Tcl, which potentially can be exploited by malicious, local users to gain escalated privileges.

The security issue is caused due to a boundary error within tcl/win/tclWinReg.c when processing overly long registry key names. This can be exploited to cause a buffer overflow by e.g. creating a malicious registry key and enticing another user to query it with an application using Tcl.

The security issue is reported in versions prior to 8.4.15. Other versions may also be affected.

Comment 1 Pierre-Yves Rofes (RETIRED) gentoo-dev

2007-05-25 17:57:53 UTC

Setting status and cc'ing herd. tcltk team, please advise and bump as necessary.

Comment 2 Pierre-Yves Rofes (RETIRED) gentoo-dev

2007-05-25 18:01:17 UTC

ok forget about that, it's for windows only. sorry for the noise.