Security vulnerability in evolution
Simon L. Nielsen
simon at FreeBSD.org
Mon Jan 24 16:57:43 PST 2005
Hello evolution maintainers
As recently documented in the FreeBSD VuXML document [1] there is a
security vulnerability in evolution. A patch, obtained from Debian
Linux, is attached or an upstream version can be found at [2] (I don't
know which patch is "best").
Please update the port as soon as possible.
Thanks in advance.
[1] http://vuxml.FreeBSD.org/b8943e61-6e68-11d9-a9e7-0001020eed82.html
[2] http://cvs.gnome.org/viewcvs/evolution/camel/camel-lock-helper.c?rev=1.7&view=log#rev1.5.74.1
--
Simon L. Nielsen
FreeBSD Security Team
-------------- next part --------------
--- evolution-1.0.5.orig/camel/camel-lock-helper.c 2001-10-27 18:59:27.000000000 +0200
+++ evolution-1.0.5/camel/camel-lock-helper.c 2005-01-21 16:57:44.000000000 +0100
@@ -360,6 +360,8 @@ int main(int argc, char **argv)
switch(msg.id) {
case CAMEL_LOCK_HELPER_LOCK:
res = CAMEL_LOCK_HELPER_STATUS_NOMEM;
+ if (msg.data+1 < msg.data)
+ break;
path = malloc(msg.data+1);
if (path != NULL) {
res = CAMEL_LOCK_HELPER_STATUS_PROTOCOL;
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-gnome/attachments/20050125/a1ef316b/attachment.bin
More information about the freebsd-gnome
mailing list