Re: [Exim] verify=header_syntax Buffer overflow (CAN-2004-04…

Top Page
Delete this message
Reply to this message
Author: Andreas Metzler
Date:  
To: Exim-Users (E-mail)
Subject: Re: [Exim] verify=header_syntax Buffer overflow (CAN-2004-0400)
On 2004-05-06 Philip Hazel <ph10@???> wrote:
> On Thu, 6 May 2004, Andreas Metzler wrote:


> > Afaict the broken code in src/verify.c is completely useless in exim4.
> > The header name is copied to hname but the error message is generated
> > from h->text and hname is ignored.


> Correct. I have just been working on this. Below is my patch.

[...]

For the impatient there is
http://people.debian.org/~ametzler/exim4.33-1/
including this fix which will be uploaded to Debian/unstable tonight.
                 cu andreas
--
"See, I told you they'd listen to Reason," [SPOILER] Svfurlr fnlf,
fuhggvat qbja gur juveyvat tha.
Neal Stephenson in "Snow Crash"