subject:"\[Bug 284631\] Re\: UML kernel built in Intrepid SEGFAULTs immediately"

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately with buffer overflow (UML bug)

2009-08-24 Thread Leann Ogasawara

I believe this should be resolved in Karmic which contains the following patch. I'm marking this Fix Released for now. Thanks. ogasaw...@yoji:~/ubuntu-karmic$ git show 361371201b60ffd686a694c848c1d5ad6061725f commit 361371201b60ffd686a694c848c1d5ad6061725f Author: Balbir Singh Date: Tue Dec

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately with buffer overflow (UML bug)

2008-10-24 Thread Roman Yepishev

Moved to linux as it is a UML kernel bug. ** Summary changed: - UML kernel built in Intrepid SEGFAULTs immediately + UML kernel built in Intrepid SEGFAULTs immediately with buffer overflow (UML bug) ** Description changed: - Binary package hint: gcc-4.3 - Distributor ID: Ubuntu Desc

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

2008-10-24 Thread Roman Yepishev

Fixed. It is even not a glibc problem, it is UML one. For the history: The actual crash happens inside os_create_unix_socket. Length is char[256] while in sockaddr_un sun_path which receives the file argument it is only 108 bytes long. __snprintf_chk catches this condition as we have a potential

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

2008-10-24 Thread Roman Yepishev

Moving to glibc as check failure happens with __snprintf_chk on (looks like) legitimate input. ** Changed in: glibc (Ubuntu) Sourcepackagename: gcc-4.3 => glibc -- UML kernel built in Intrepid SEGFAULTs immediately https://bugs.launchpad.net/bugs/284631 You received this bug notification because

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

2008-10-24 Thread Roman Yepishev

Ok, null pointer dereferencing has nothing to do with the original bug, it was UML way to probe for address space setting up a custom segv handler. So further investigation led me to the following: 522 addr.sun_family = AF_UNIX; (gdb) bt #0 os_create_unix_socket (file=0xb45be30 "/home

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

2008-10-23 Thread Roman Yepishev

Built a debug version: rtg$ gdb ./linux GNU gdb 6.8-debian Copyright (C) 2008 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitt

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately with buffer overflow (UML bug)

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately with buffer overflow (UML bug)

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

[Bug 284631] Re: UML kernel built in Intrepid SEGFAULTs immediately

6 matches

Site Navigation

Mail list logo

Footer information