Source: dgen
Source-Version: 1.23-6
We believe that the bug you reported is fixed in the latest version of
dgen, which is due to be installed in the Debian FTP archive:
dgen_1.23-6.diff.gz
to pool/non-free/d/dgen/dgen_1.23-6.diff.gz
dgen_1.23-6.dsc
to pool/non-free/d/dgen/dgen_1.23-6.dsc
dgen_1.23-6_i386.deb
to pool/non-free/d/dgen/dgen_1.23-6_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 263282@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Joey Hess <joeyh@debian.org> (supplier of updated dgen package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 3 Aug 2004 12:11:26 -0400
Source: dgen
Binary: dgen
Architecture: source i386
Version: 1.23-6
Distribution: unstable
Urgency: medium
Maintainer: Joey Hess <joeyh@debian.org>
Changed-By: Joey Hess <joeyh@debian.org>
Description:
dgen - Sega Genesis/MegaDrive emulator
Closes: 263158263282
Changes:
dgen (1.23-6) unstable; urgency=medium
.
* Fix file-in-tmp security hole in gzip/bzip rom extraction code.
Closes: #263282
* Rewrite gzip/bzipped file code to not use unsafe system calls.
Closes: #263158
* Put in a hack to avoid automake being run, since current versions won't
work.
Files:
342b75701a689207216b6ca9422f6cda 619 non-free/otherosfs optional dgen_1.23-6.dsc
8c1fa56d574c800524f5bde3b782f1ed 4999 non-free/otherosfs optional dgen_1.23-6.diff.gz
ae7fa7afe506d3f0517837eb7a66827a 253804 non-free/otherosfs optional dgen_1.23-6_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFBD9At2tp5zXiKP0wRAgyQAJ43jM8tmmd+ZnW+17p+oMsR3ZEw8gCeJOYp
xijAQeJfJLNmIb+4V/0uTlI=
=8fG9
-----END PGP SIGNATURE-----
Information forwarded to debian-bugs-dist@lists.debian.org, Joey Hess <joeyh@debian.org>: Bug#263282; Package dgen.
(full text, mbox, link).
Acknowledgement sent to Matt Zimmerman <mdz@debian.org>:
Extra info received and forwarded to list. Copy sent to Joey Hess <joeyh@debian.org>.
(full text, mbox, link).
Matt Zimmerman wrote:
> Forwarding to Mitre for a CVE assignment.
Note that my patch in Matt's mail bites, but I can send a working one if
needed. The package in Debian (non-free) has been fixed.
--
see shy jo
Information forwarded to debian-bugs-dist@lists.debian.org, Joey Hess <joeyh@debian.org>: Bug#263282; Package dgen.
(full text, mbox, link).
Acknowledgement sent to "Steven M. Christey" <coley@mitre.org>:
Extra info received and forwarded to list. Copy sent to Joey Hess <joeyh@debian.org>.
(full text, mbox, link).
Cc: 263282@bugs.debian.org, "Steven M. Christey" <coley@mitre.org>
Subject: Re: Bug#263282: insecure temp files
Date: Tue, 3 Aug 2004 16:27:30 -0400 (EDT)
> The nasty code for decompressing gzip and bzipped roms on the fly uses
> files in /tmp insecurely.
>
>...
>> --- romload.c (revision 10593)
>> +++ romload.c (working copy)
Use CAN-2004-0770.
- Steve
Debbugs is free software and licensed under the terms of the GNU General
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.