Bug#685503: libauthen-tacacsplus-perl: segfaults when Tacacs server doesn't answer

Tue, 21 Aug 2012 04:18:22 -0700 

Package: libauthen-tacacsplus-perl
Version: 0.22-1
Severity: important

Perl segfaults when Authen::Tacacs->authen() doesn't get a response from the 
server.

Program received signal SIGSEGV, Segmentation fault.
make_auth (username=username@entry=0x7ffff7ba3f57 "", user_len=0, 
password=0x7ffff7ba3f57 "",
    password_len=0, authen_type=authen_type@entry=1) at tac_client.c:108
108             switch (ar->status) {
(gdb) l
103         send_data(buf,buf_len,tac_fd);
104         free(buf);
105         while ((data_len=read_reply(&data))!=-1){
106
107             ar=data;
108             switch (ar->status) {
109             case TAC_PLUS_AUTHEN_STATUS_GETUSER:
110                 free(data);
111                 send_auth_cont(username, user_len);
112                 break;
(gdb) p ar
$1 = (struct authen_reply *) 0x0
(gdb) p data
$2 = (void *) 0x0
(gdb) bt
#0  make_auth (username=username@entry=0x7ffff7ba3f57 "", user_len=0, 
password=0x7ffff7ba3f57 "",
    password_len=0, authen_type=authen_type@entry=1) at tac_client.c:108
#1  0x00007ffff6bf883e in XS_Authen__TacacsPlus_make_auth (my_perl=<optimized 
out>, cv=<optimized out>)
    at TacacsPlus.xs:128
#2  0x00007ffff7b1545c in Perl_pp_entersub () from /usr/lib/libperl.so.5.14
#3  0x00007ffff7b0c9b6 in Perl_runops_standard () from /usr/lib/libperl.so.5.14
#4  0x00007ffff7aae585 in perl_run () from /usr/lib/libperl.so.5.14
#5  0x0000000000400f89 in main ()


-- System Information:
Debian Release: wheezy/sid
  APT prefers stable-updates
  APT policy: (700, 'stable-updates'), (700, 'stable'), (500, 'testing'), (200, 
'unstable'), (100, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.5-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libauthen-tacacsplus-perl depends on:
ii  libc6                       2.13-35
ii  perl                        5.14.2-12
ii  perl-base [perlapi-5.14.2]  5.14.2-12

libauthen-tacacsplus-perl recommends no packages.

libauthen-tacacsplus-perl suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to