Prev-20 Home Next-20 1 msg Re: [Pkg-kde-extras] Bug#432007: CVE-2007-1799:... Japanese speaker needed for bug #429174/mecab \ Moritz Muehlenhoff (2 Jul 2007) . \ Mike Hommey (3 Jul 2007) . \ Hideki Yamane (3 Jul 2007) 10 msg Encrypting drive 16 msg security.d.o packages for etch built on sarge 17 msg security idea - bootable CD to check your system 1 msg Business navigation 4 msg an issue with recent security advisories 2 msg etchs aide messing logs 4 msg Re: [SECURITY] [DSA 1304-1] New Linux kernel 2.... 2 msg PaX - gresec patch 5 msg kernel-image-2.6.8-4-386 (2.6.8-16sarge7) 3 msg Packages being kept back after security notices 2 msg where'd security.debian.org go? 1 msg [rene: Re: Latest OOo Etch update -7etch1 depen... 2 msg Latest OOo Etch update -7etch1 depends on diffe... 22 msg Time to replace MD5? 1 msg solemnly download 1 msg Re: [SECURITY] [DSA 1302-1] New freetype packag... 3 msg UNSUSCRIBE 3 msg Carl Martell Sippel ist außer Haus. Prev-20 Home Next-20

Prev-Msg Prev-Thread Debian-security Jul-2007 Next-Thread Next-Msg Subject: Re: Japanese speaker needed for bug #429174/mecab Group: Debian-security From: Hideki Yamane Date: 3 Jul 2007 Hi, On Tue, 3 Jul 2007 00:12:09 +0200 Moritz Muehlenhoff <jmm> wrote: > If someone is able to read Japanese, please look into Bug 429174 > for mecab and provide the necessary information what this issue > is all about in the bug log. I've checked an upstream mailing list. It would be a patch for buffer overflow. http://lists.sourceforge.jp/mailman/archives/mecab-users/2007-March/000257.html @@ -235,6 +235,11 @@ const char *begin3 = begin2 + mblen; const char *group_begin3 = 0; + if (begin3 > end) { + ADDUNKNWON; + return resultNode; + } + if (cinfo.group) { const char *tmp = begin3; CharInfo fail; -- To UNSUBSCRIBE, email to debian-security-REQUEST with a subject of "unsubscribe". Trouble? Contact listmaster Prev-Msg Prev-Thread Debian-security Jul-2007 Next-Thread Next-Msg

© 2004-2008 readlist.com