An issue was discovered in mgetty before 1.2.1. In contrib/scrts.c, a stack-based buffer overflow can be triggered via a command-line parameter.
{ "binaries": [ { "binary_version": "1.1.36-2.1+deb8u1build0.16.04.1", "binary_name": "mgetty" }, { "binary_version": "1.1.36-2.1+deb8u1build0.16.04.1", "binary_name": "mgetty-docs" }, { "binary_version": "1.1.36-2.1+deb8u1build0.16.04.1", "binary_name": "mgetty-fax" }, { "binary_version": "1.1.36-2.1+deb8u1build0.16.04.1", "binary_name": "mgetty-pvftools" }, { "binary_version": "1.1.36-2.1+deb8u1build0.16.04.1", "binary_name": "mgetty-viewfax" }, { "binary_version": "1.1.36-2.1+deb8u1build0.16.04.1", "binary_name": "mgetty-voice" } ] }
{ "binaries": [ { "binary_version": "1.1.36-3.1", "binary_name": "mgetty" }, { "binary_version": "1.1.36-3.1", "binary_name": "mgetty-docs" }, { "binary_version": "1.1.36-3.1", "binary_name": "mgetty-fax" }, { "binary_version": "1.1.36-3.1", "binary_name": "mgetty-pvftools" }, { "binary_version": "1.1.36-3.1", "binary_name": "mgetty-viewfax" }, { "binary_version": "1.1.36-3.1", "binary_name": "mgetty-voice" } ] }