This bug was fixed in the package less - 458-3ubuntu1

---------------
less (458-3ubuntu1) xenial; urgency=medium

  * d/p/03-707824-fix_double_free_with_multiple_regex_groups.patch:
    - Cherry-pick upstream fix for double free in regular expression
      code.  (Closes: #707824; LP: #1521043)

 -- Richard Hansen <rhan...@rhansen.org>  Sun, 29 Nov 2015 22:40:34
-0500

** Changed in: less (Ubuntu)
       Status: Triaged => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to less in Ubuntu.
https://bugs.launchpad.net/bugs/1521043

Title:
  less 458 crashes if search regex has many groups

Status in less package in Ubuntu:
  Fix Released
Status in less package in Debian:
  Incomplete

Bug description:
  less 458 crashes if there are enough capture groups in the regular
  expression used for search:

      newline=$(printf \\nx); newline=${newline%x}
      echo x | LESS="+g/(((((x)))))${newline}" less

  On amd64, the above produces a segfault:

      Segmentation fault (core dumped)

  On i386, the above triggers an assert:

      *** Error in `less': double free or corruption (fasttop): 0x0887f9e8 ***
      Aborted

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/less/+bug/1521043/+subscriptions

-- 
Mailing list: https://launchpad.net/~touch-packages
Post to     : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help   : https://help.launchpad.net/ListHelp

Reply via email to