SECURITY: remotely-exploitable buffer overflow in cfingerd's rfc1413 (ident) client

This is CVE-2013-1049

Any update on the publication of a fixed package? The embargo on this vulnerability lapsed a week ago.

Thanks for taking the time to report this bug and helping to make Ubuntu better. Since the package referred to in this bug is in universe or multiverse, it is community maintained. If you are able, I suggest coordinating with upstream and posting a debdiff for this issue. When a debdiff is available, members of the security team will review it and publish the package. See the following link for more information: https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures

The attachment "cfingerd.patch" of this bug report has been identified as being a patch. The ubuntu-reviewers team has been subscribed to the bug report so that they can review the patch. In the event that this is in fact not a patch you can resolve this situation by removing the tag 'patch' from the bug report and editing the attachment so that it is not flagged as a patch. Additionally, if you are member of the ubuntu-reviewers team please also unsubscribe the team from this bug report.

[This is an automated message performed by a Launchpad user owned by Brian Murray. Please contact him regarding any issues with the action taken in this bug report.]

Attaching a debdiff.

I'm not convinced upstream is active as the last release was in 1999, but I'll contact them regardless.

Thanks for the debdiff. Since we have basically the same version of cfingerd in lucid-raring, I'll apply it to all releases with a slight changes file adjustment.

Packages will build now and will be released in the next few days. Thanks!

Actually, it would appear the version in Lucid isn't affected by this flaw. The vulnerability seems to originate from this debian-specific patch:

cfingerd (1.4.3-3) unstable; urgency=low
   * Applied IPv6 patch from Mats Erik Andersson
     <email address hidden> (closes: Bug#570024)

This bug was fixed in the package cfingerd - 1.4.3-3ubuntu2

---------------
cfingerd (1.4.3-3ubuntu2) raring; urgency=high

  * SECURITY UPDATE: fix buffer overflow in rfc1413 (ident) client
    (LP: #1104425).
    - CVE-2013-1049
 -- Malcolm Scott <email address hidden> Thu, 24 Jan 2013 20:19:56 +0000

This bug was fixed in the package cfingerd - 1.4.3-3ubuntu1.12.04.1

---------------
cfingerd (1.4.3-3ubuntu1.12.04.1) precise-security; urgency=high

  * SECURITY UPDATE: fix buffer overflow in rfc1413 (ident) client
    (LP: #1104425).
    - CVE-2013-1049
 -- Malcolm Scott <email address hidden> Thu, 24 Jan 2013 20:19:56 +0000

This bug was fixed in the package cfingerd - 1.4.3-3ubuntu1.12.10.1

---------------
cfingerd (1.4.3-3ubuntu1.12.10.1) quantal-security; urgency=high

  * SECURITY UPDATE: fix buffer overflow in rfc1413 (ident) client
    (LP: #1104425).
    - CVE-2013-1049
 -- Malcolm Scott <email address hidden> Thu, 24 Jan 2013 20:19:56 +0000

This bug was fixed in the package cfingerd - 1.4.3-3ubuntu1.11.10.1

---------------
cfingerd (1.4.3-3ubuntu1.11.10.1) oneiric-security; urgency=high

  * SECURITY UPDATE: fix buffer overflow in rfc1413 (ident) client
    (LP: #1104425).
    - CVE-2013-1049
 -- Malcolm Scott <email address hidden> Thu, 24 Jan 2013 20:19:56 +0000