Package: cracklib2 / 2.9.6-2

Metadata

Package Version Patches format
cracklib2 2.9.6-2 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
install debian python modules.patch | (download)

python/setup.py.in | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 install debian specific python modules
libcrack2 error safer check variant.patch | (download)

lib/crack.h | 9 9 + 0 - 0 !
lib/fascist.c | 54 54 + 0 - 0 !
lib/packlib.c | 7 7 + 0 - 0 !
python/_cracklib.c | 28 23 + 5 - 0 !
4 files changed, 93 insertions(+), 5 deletions(-)

 add a safer check variant
improve_test_737040.patch | (download)

python/test_cracklib.py | 23 16 + 7 - 0 !
1 file changed, 16 insertions(+), 7 deletions(-)

 improve python test to cover low level fascistcheck
Bug-Debian: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737040

CVE 2016 6318.patch | (download)

lib/fascist.c | 59 34 + 25 - 0 !
1 file changed, 34 insertions(+), 25 deletions(-)

 cve-2016-6318: stack-based buffer overflow when parsing large gecos field
 It is not safe to pass words longer than STRINGSIZE further to cracklib
 so the longbuffer cannot be longer than STRINGSIZE.
overflow processing long words.patch | (download)

lib/rules.c | 5 2 + 3 - 0 !
1 file changed, 2 insertions(+), 3 deletions(-)

 the input word is guaranteed to be at most stringsize-1 in length.
 One of the mangle operations involves duplicating the input word, resulting in
 a string twice the length to be accommodated by both area variables.
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=835386