Ubuntu
xfce4-panel package

Stack-based buffer overflow

Bug #190020 reported by Lionel Le Folgoc on 2008-02-07

262

	Status	Importance	Assigned to
Xfce4 Panel	Fix Released	Unknown	xfce-bugs #3324
xfce4-panel (Gentoo Linux)	Invalid	Medium	gentoo-bugs #201289
xfce4-panel (Ubuntu)	Fix Released	Undecided	Unassigned
Dapper	Fix Released	High	Gauvain Pocentek
Edgy	Fix Released	Undecided	Unassigned
Feisty	Fix Released	High	Gauvain Pocentek
Gutsy	Fix Released	High	Emanuele Gentili
Hardy	Fix Released	Undecided	Unassigned

Bug Description

Binary package hint: xfce4-panel

Stack-based buffer overflow in the Panel (xfce4-panel) component in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via Launcher tooltips.

http://svn.xfce.org/index.cgi/xfce/revision?rev=25792

CVE References

2007-6531

Lionel Le Folgoc (mrpouit) on 2008-02-07

Changed in xfce4-panel:
status:	New → Fix Released

Bug Watch Updater (bug-watch-updater) on 2008-02-08

Changed in xfce4-panel:
status:	Unknown → Fix Released

Revision history for this message

Gauvain Pocentek (gpocentek) wrote on 2008-02-08:

02_overflow_rev_25792.patch Edit (6.5 KiB, text/plain)

Attaching a patch for xfce 4.4.1 which will probably work for 4.4.0 too.
(I don't have time to prepare and test packages for SRUs).

Emanuele Gentili (emgent) on 2008-04-10

Changed in xfce4-panel:
assignee:	nobody → emgent
importance:	Undecided → High
status:	New → Confirmed

Bug Watch Updater (bug-watch-updater) on 2008-04-10

Changed in xfce4-panel:
status:	Unknown → Invalid

Emanuele Gentili (emgent) on 2008-04-10

Changed in xfce4-panel:
status:	Confirmed → In Progress

Revision history for this message

Emanuele Gentili (emgent) wrote on 2008-04-10:

patch tested in gutsy and work fine.

Revision history for this message

Emanuele Gentili (emgent) wrote on 2008-04-11:

@Cody A.W. Somerville: if you can please test it you too.

Thanks

Emanuele

Revision history for this message

Gauvain Pocentek (gpocentek) wrote on 2008-06-27:

Rejecting the Edgy task, it's not supported any more.

Changed in xfce4-panel:
status:	New → Won't Fix

Lionel Le Folgoc (mrpouit) on 2008-06-27

Changed in xfce4-panel:
assignee:	nobody → gauvainpocentek
importance:	Undecided → High
status:	New → In Progress
assignee:	nobody → gauvainpocentek
importance:	Undecided → High
status:	New → In Progress

Revision history for this message

Gauvain Pocentek (gpocentek) wrote on 2008-06-27:

dapper debdiff Edit (8.5 KiB, text/plain)

Revision history for this message

Gauvain Pocentek (gpocentek) wrote on 2008-06-27:

feisty debdiff Edit (8.5 KiB, text/plain)

Revision history for this message

Lionel Le Folgoc (mrpouit) wrote on 2008-06-27:

These 3 debdiffs build fine, and the resulting packages builds/upgrades/removes/purges fine too. I'll test them tomorrow.

For the gutsy debdiff, the debian/patches/series shouldn't be needed as xfce.mk includes simple-patchsys.mk.

Revision history for this message

Gauvain Pocentek (gpocentek) wrote on 2008-06-28:

#10

updated gutsy debdiff Edit (8.6 KiB, text/plain)

Revision history for this message

Gauvain Pocentek (gpocentek) wrote on 2008-06-28:

#11

Packages tested on dapper, feisty and gutsy, no problem found.

Revision history for this message

Lionel Le Folgoc (mrpouit) wrote on 2008-06-28:

#12

Tested too, no problem.

Revision history for this message

Emanuele Gentili (emgent) wrote on 2008-06-29:

#13

Thanks

@Kees/Jamie: can you add it in your todolist for upload?

Jamie Strandboge (jdstrand) on 2008-07-03

Changed in xfce4-panel:
status:	In Progress → Fix Released
status:	Won't Fix → Fix Released
status:	In Progress → Fix Released
status:	In Progress → Fix Released