Bug#168443: dpkg: md5sum segfaults on invalid sum files

To: submit@bugs.debian.org
Subject: Bug#168443: dpkg: md5sum segfaults on invalid sum files
From: Martin Renold <martinxyz@gmx.ch>
Date: Sat, 9 Nov 2002 17:25:37 +0100
Message-id: <[🔎] 20021109162537.GA22598@old.homeip.net>
Reply-to: Martin Renold <martinxyz@gmx.ch>, 168443@bugs.debian.org

Package: dpkg
Version: 1.10.4
Severity: normal

Dpkg's md5sum segfault if presented an invalid file with -c:
> md5sum -c /bin/ls
md5sum: unrecognized line: md5sum: unrecognized line: md5sum: can't open
+--block-size=SIZE      use SIZE-byte blocks
Segmentation fault (core dumped)

gdb reports: (no symbols, sorry...)
0x080493cc in strcpy ()

So perhaps it is possible to exploit this with a malformed md5sum file,
but I'm not a security expert. Note that md5sum.textutils doesn't have
this problem. Related Bug: #136110.

-- System Information
Debian Release: testing/unstable

Reply to:

Prev by Date: Bug#92263: dpkg --list truncates output on stdout redirection
Next by Date: Bug#168500: dpkg: --help show unpaired pairs
Previous by thread: Bug#168266: dpkg-dev: dpkg-buildpackage -B must call build-arch, not build
Next by thread: Bug#168500: dpkg: --help show unpaired pairs
Index(es):
- Date
- Thread