[rrd-developers] buffer overflow in rrd_set_error()

Sebastian Harl sh at tokkee.org
Sat May 24 23:24:21 CEST 2008


Hi,

While looking through the bug reports of the Debian rrdtool package
([1]), I stumbled across #450578 ([1]). In one of the follow-up
messages, Matthew Boyle identified ([3]) a buffer overflow in
rrd_set_error() and provided a patch for it.

According to Matthew, this patch has been submitted upstream. However, I
cannot find it in 1.3-rc4. What happened to that patch?

TIA,
Sebastian

[1] http://bugs.debian.org/src:rrdtool
[2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450578
[3] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450578#60

-- 
Sebastian "tokkee" Harl +++ GnuPG-ID: 0x8501C7FC +++ http://tokkee.org/

Those who would give up Essential Liberty to purchase a little Temporary
Safety, deserve neither Liberty nor Safety.         -- Benjamin Franklin

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.oetiker.ch/pipermail/rrd-developers/attachments/20080524/5d8e93c6/attachment.bin 


More information about the rrd-developers mailing list