Overview
Request 823029 accepted
- Update to version 1.0.5:
+ Bumped libenchant’s version to libenchant2
+ Fixed build and link errors
+ Fixed copyright headers to only have start date
- Run spec-cleaner
- Drop artha-fix-gio-linking.patch, because fixed upstream.
- Drop artha-only-use-AM_PROG_AR-if-defined.patch, because it fixed
building with openSUSE <= 12.1 when autoreconf is used.
- Created by Kieltux
- In state accepted
-
Package maintainer:
badshah400
- Supersedes 823028
Request History
Kieltux created request
- Update to version 1.0.5:
+ Bumped libenchant’s version to libenchant2
+ Fixed build and link errors
+ Fixed copyright headers to only have start date
- Run spec-cleaner
- Drop artha-fix-gio-linking.patch, because fixed upstream.
- Drop artha-only-use-AM_PROG_AR-if-defined.patch, because it fixed
building with openSUSE <= 12.1 when autoreconf is used.
lrupp accepted request
ok
Sorry for SR 823028. I did have a caching problem in my browser and submitted not final version.
Many thanks for this sr. Any idea whether https://www.exploit-db.com/exploits/45760 has been fixed with this update?
Good question. There is nothing about it in the changelog. I asked Sundaram Ramaswamy now per mail.
OK, thanks. We can resubmit to Factory once we know that this exploit has been resolved.
Sundaram Ramaswamy was not aware about the exploit and asked "However, just by looking at the exploit python3 script I'm not sure how to reproduce this issue.Can you please help me understand the bug itself?" I also don't know how this exploit work. Can anyone help?
@Kieltux no idea from my side either, but perhaps the app author should contact the exploit researcher/author listed on exploit-db?
@badshah400: The exploit for artha_1.0.3.0.exe does following: 1. The Python scripts generates just a text file with 256 "A" characters. 2. Then put the content of the generated file into the artha search input line. 3. artha_1.0.3.0.exe segfaults.
If you only use 255 characters, artha (artha_1.0.3.0.exe) do not segfault.
I have tried the same with the Linux version of artha (artha-1.0.3-lp151.3.2.x86_64.rpm). I have tried 256 characters in the search input line: No segfault, just "Queried string not found in thesaurus!"
At least I tried 13772 characters in the search inpult line: No segfault, just "Queried string not found in thesaurus!". It just took a little bit longer.
In my opinion: The exploit (https://www.exploit-db.com/exploits/45760) does only work in the Windows version.
@Kieltux Thanks for the info. Since I want to submit the pkg to openSUSE:Factory, I have opened a bug report requesting a security audit for the package (https://bugzilla.suse.com/show_bug.cgi?id=1174960).