bash.1: "Theextglob"

Bash Version: 5.2 Patch Level: 15 Release Status: release Description: In the manual page, space is missing between "The" and "extglob". Repeat-By: $ man bash | grep Thee Theextglob option changes the behavior of the parser, since the paren- -- Jakub Wilk

Signed integer overflow in ansicstr() when parsing \x{...}

<<< "\$'\\x{}'" strtrans.c:149:14: runtime error: signed integer overflow: 268435455 * 16 cannot be represented in type 'int' Fix: Use an unsigned variable for arithmetic, like when parsing \u. -- Jakub Wilk

Re: bash -n: stack overflow in extract_delimited_string()

* Chet Ramey , 2020-08-03, 09:15: On 8/3/20 5:30 AM, Jakub Wilk wrote: Bash Version: 5.0 Patch Level: 18 Release Status: release bash crashes with stack overflow when checking syntax of this crafted script:   $ ulimit -s   8192   $ printf 'x[$(($(fi)))`\n%05d\n][`]\n' | tr 0

bash -n: stack overflow in extract_delimited_string()

/homes/chet/src/bash/src/parse.y:3445 #47585 read_token (command=0) at /usr/homes/chet/src/bash/src/parse.y:3202 #47586 0x56084f0a2698 in yylex () at /usr/homes/chet/src/bash/src/parse.y:2761 #47587 yyparse () at y.tab.c:1842 #47588 0x56084f098486 in parse_command () at eval.c:303 #47589 0x56084f0985a4 in read_command () at eval.c:347 #47590 0x56084f0987b8 in reader_loop () at eval.c:143 #47591 0x56084f09715d in main (argc=2, argv=0x7ffde7e979a8, env=0x7ffde7e979c0) at shell.c:805 -- Jakub Wilk

Out-of-bounds read in parse_comsub()

0 here: #0 0xb72b41d4 in __interceptor_realloc (/usr/lib/i386-linux-gnu/libasan.so.4+0xdf1d4) #1 0x5c35d0 in xrealloc xmalloc.c:133 ... Found using American Fuzzy Lop: http://lcamtuf.coredump.cx/afl/ -- Jakub Wilk