On Fri, Jan 27, 2012 at 08:26:46AM +1100, Craig Small wrote: > On Thu, Jan 26, 2012 at 08:39:57PM +0100, Milan Kocian wrote: > > Package: psmisc > > Version: 22.15-1 > > Severity: important > > > > After upgrade to this version I see: > > > > root@ntm:~# pstree > > *** buffer overflow detected ***: ./pstree terminated > So do I, not visible in the upstream (where I tested it) because the > harden compilier flags are not used. > > - Craig >
I found that opensuse address this issue too: https://bugzilla.novell.com/show_bug.cgi?id=718915 I tried this change from Tetsuo Handa and it works. typedef struct _proc { - char comm[COMM_LEN + 1]; + char comm[COMM_LEN + 2 + 1]; /* add another 2 for thread brackets */ char **argv; /* only used : argv[0] is 1st arg; undef if change, reuslting pstree abort with SIGSEGV. Output after change: pstree (PSmisc) 22.15 Copyright (C) 1993-2009 Werner Almesberger and Craig Small PSmisc comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under the terms of the GNU General Public License. For more information about these matters, see the files named COPYING. milon@ntm:~$ ./pstree init─┬─/usr/sbin/apach─┬─/usr/sbin/apach │ └─2*[/usr/sbin/apach───26*[{/usr/sbin/apach}]] ... Best regards, -- Milan Kocian -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
