Debian Bug report logs - #333497
CAN-2005-2971: Heap overflow in kword's RTF import

version graph

Package: kword; Maintainer for kword is Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>; Source for kword is src:calligra-transitional.

Reported by: Moritz Muehlenhoff <jmm@inutil.org>

Date: Wed, 12 Oct 2005 08:18:02 UTC

Severity: grave

Tags: security

Found in version kword/1:1.3.5-4.3

Fixed in version kword/1:1.3.5-5

Done: Christopher Martin <christopher.martin@utoronto.ca>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox


Report forwarded to debian-bugs-dist@lists.debian.org, Debian Security Team <team@security.debian.org>, Ben Burton <bab@debian.org>:
Bug#333497; Package kword. Full text and rfc822 format available.

Acknowledgement sent to Moritz Muehlenhoff <jmm@inutil.org>:
New Bug report received and forwarded. Copy sent to Debian Security Team <team@security.debian.org>, Ben Burton <bab@debian.org>. Full text and rfc822 format available.

Message #5 received at submit@bugs.debian.org (full text, mbox):

From: Moritz Muehlenhoff <jmm@inutil.org>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: CAN-2005-2971: Heap overflow in kword's RTF import
Date: Wed, 12 Oct 2005 10:09:25 +0200
Package: kword
Version: 1:1.3.5-4.3
Severity: grave
Tags: security
Justification: user security hole

An exploitable heap overflow has been found in kword's RTF import function.
Please see http://www.kde.org/info/security/advisory-20051011-1.txt for
more information and a patch against 1.3.5. This has been assigned 
CAN-2005-2971, please mention it in the changelog, when fixing this.

Cheers,
        Moritz

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.14-rc1
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)



Information forwarded to debian-bugs-dist@lists.debian.org, Ben Burton <bab@debian.org>:
Bug#333497; Package kword. Full text and rfc822 format available.

Acknowledgement sent to Florian Weimer <fw@deneb.enyo.de>:
Extra info received and forwarded to list. Copy sent to Ben Burton <bab@debian.org>. Full text and rfc822 format available.

Message #10 received at 333497@bugs.debian.org (full text, mbox):

From: Florian Weimer <fw@deneb.enyo.de>
To: Moritz Muehlenhoff <jmm@inutil.org>
Cc: 333497@bugs.debian.org
Subject: Re: Bug#333497: CAN-2005-2971: Heap overflow in kword's RTF import
Date: Wed, 12 Oct 2005 10:59:55 +0200
Note that according to the Ubuntu advisory, this bug might also be
present in the koffice-libs package.



Information forwarded to debian-bugs-dist@lists.debian.org:
Bug#333497; Package kword. Full text and rfc822 format available.

Acknowledgement sent to Ben Burton <bab@debian.org>:
Extra info received and forwarded to list. Full text and rfc822 format available.

Message #15 received at submit@bugs.debian.org (full text, mbox):

From: Ben Burton <bab@debian.org>
To: Moritz Muehlenhoff <jmm@inutil.org>, 333497@bugs.debian.org
Cc: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Re: Bug#333497: CAN-2005-2971: Heap overflow in kword's RTF import
Date: Wed, 12 Oct 2005 21:58:41 +1000
> An exploitable heap overflow has been found in kword's RTF import function.

The patch for sarge was already sent to the security team earlier
today, and the sid packages are being uploaded tonight.

Ben.




Information forwarded to debian-bugs-dist@lists.debian.org:
Bug#333497; Package kword. Full text and rfc822 format available.

Acknowledgement sent to Ben Burton <bab@debian.org>:
Extra info received and forwarded to list. Full text and rfc822 format available.

Information forwarded to debian-bugs-dist@lists.debian.org:
Bug#333497; Package kword. Full text and rfc822 format available.

Acknowledgement sent to Ben Burton <bab@debian.org>:
Extra info received and forwarded to list. Full text and rfc822 format available.

Message #25 received at 333497@bugs.debian.org (full text, mbox):

From: Ben Burton <bab@debian.org>
To: Florian Weimer <fw@deneb.enyo.de>, 333497@bugs.debian.org
Cc: Moritz Muehlenhoff <jmm@inutil.org>, team@security.debian.org
Subject: Re: Bug#333497: CAN-2005-2971: Heap overflow in kword's RTF import
Date: Wed, 12 Oct 2005 22:53:32 +1000
Ah, yes, I forgot to mention this when I mailed the security team
earlier.

> Note that according to the Ubuntu advisory, this bug might also be
> present in the koffice-libs package.

The issue for debian lies specifically within the kword binary package.
Unless I'm mistaken, debian's koffice-libs is not affected.

Ben.




Bug marked as fixed in version 1:1.3.5-5, send any further explanations to Moritz Muehlenhoff <jmm@inutil.org> Request was from Christopher Martin <christopher.martin@utoronto.ca> to control@bugs.debian.org. Full text and rfc822 format available.

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Wed, 27 Jun 2007 07:47:35 GMT) Full text and rfc822 format available.

Send a report that this bug log contains spam.


Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Mon Apr 21 02:38:44 2014; Machine Name: beach.debian.org

Debian Bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.