buffer leak in outputfilter
Bug #89308 reported by
Kees Cook
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| libapache2-mod-python (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
| Breezy |
Fix Released
|
Low
|
Kees Cook | ||
| Dapper |
Fix Released
|
Low
|
Kees Cook | ||
Bug Description
Binary package hint: libapache2-
Jim Garrison brought to my attention a fix put into mod_python that should be treated as a security vulnerability, and fixed in Dapper and Breezy. Prior to at least 3.2.8, output filters handling >16384 bytes would include "too much" buffer memory, possibly leading to other session information being displayed. Forwarded details:
See last four messages in this list by Miles Egan for a patch that fixes it:
http://
The patch was applied to "trunk" in subversion revision 103561 of mod_python on
the apache subversion server: http://
CVE References
Revision history for this message
| Kees Cook (kees) wrote | #1 |
| Changed in libapache2-mod-python: | |
| status: | Unconfirmed → Rejected |
| importance: | Undecided → Low |
| status: | Unconfirmed → Confirmed |
| assignee: | nobody → keescook |
| importance: | Undecided → Low |
| status: | Unconfirmed → Confirmed |
| assignee: | nobody → keescook |
Revision history for this message
| Kees Cook (kees) wrote | #2 |
| Changed in libapache2-mod-python: | |
| status: | Confirmed → Fix Released |
| status: | Confirmed → Fix Released |
To post a comment you must log in.
Rejecting devel task, this affects only Breezy and Dapper versions.