On 9/18/15 8:06 PM, Brian Carpenter wrote:
> While fuzzing bash 4.4.0(1)-beta compiled from the devel branch, I came
> across another script which triggers a null ptr dereference and a segfault.
> This script seems to crash these other versions of bash as well:
>
> 4.2.37(1)-release on x86_64 Debian, 4.3.39(1)-release on x86_64 Red Hat
>
> hexdump -v -C test00
> 00000000 5f 3d 28 7b 24 5b 3c 28 30 26 5f 3d 28 5d 29 0a |_=({$[<(0&_=(]).|
> 00000010 30 29 |0)|
> 00000012
Thanks for the report. This will be fixed in the next release of bash.
Chet
--
``The lyf so short, the craft so long to lerne.'' - Chaucer
``Ars longa, vita brevis'' - Hippocrates
Chet Ramey, ITS, CWRU [email protected] http://cnswww.cns.cwru.edu/~chet/
