Bug#230198: libc6: a

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#230198: libc6: a
From: Mike Fedyk <mfedyk@matchmail.com>
Date: Wed, 28 Jan 2004 23:45:08 -0800
Message-id: <[🔎] E1Am6rM-0008KL-Mm@srv-lnx2600.matchmail.com>
Reply-to: Mike Fedyk <mfedyk@matchmail.com>, 230198@bugs.debian.org
Package: libc6
Version: 2.3.2.ds1-10
Severity: normal

While running samba under valgrind, it looks like it found some bugs in the
C library...

ii  samba                   3.0.1-2-debug1          a LanManager-like file

==31315== Invalid read of size 1
==31315==    at 0x400118C4: (within /lib/ld-2.3.2.so)
==31315==    by 0x400062B3: _dl_map_object (in /lib/ld-2.3.2.so)
==31315==    by 0x404DF869: dl_open_worker (dl-open.c:221)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E00A8: __GI__dl_open (dl-open.c:505)
==31315==    by 0x404E1352: do_dlopen (dl-libc.c:80)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E130D: dlerror_run (dl-libc.c:42)
==31315==    by 0x404E1407: __GI___libc_dlopen_mode (dl-libc.c:155)
==31315==    by 0x403F8586: __gconv_find_shlib (gconv_dl.c:116)
==31315==    by 0x403F0745: gen_steps (gconv_db.c:255)
==31315==    by 0x403F0A3F: find_derivation (gconv_db.c:621)
==31315==    by 0x403F0FF5: __gconv_find_transform (gconv_db.c:722)
==31315==    by 0x403EF9BF: __gconv_open (gconv_open.c:172)
==31315==    by 0x403EF654: iconv_open (iconv_open.c:54)
==31315==    by 0x81C9FF3: smb_iconv_open (lib/iconv.c:225)
==31315==    by 0x81A94A8: init_iconv (lib/charcnv.c:131)
==31315==    by 0x807C253: handle_charset (param/loadparm.c:2726)
==31315==    by 0x807D131: lp_do_parameter (param/loadparm.c:3194)
==31315==    by 0x807D467: do_parameter (param/loadparm.c:3275)
==31315==    by 0x807F2D3: Parameter (param/params.c:444)
==31315==    by 0x807F5D3: Parse (param/params.c:499)
==31315==    by 0x807F7E3: pm_process (param/params.c:582)
==31315==    by 0x807E541: lp_load (param/loadparm.c:3955)
==31315==    by 0x8228322: reload_services (smbd/server.c:476)
==31315==    by 0x8228AFD: main (smbd/server.c:765)
==31315==  Address 0xFFFFE210 is not stack'd, malloc'd or free'd
==31315== 
==31315== Invalid read of size 1
==31315==    at 0x400118C4: (within /lib/ld-2.3.2.so)
==31315==    by 0x40006A46: _dl_map_object (in /lib/ld-2.3.2.so)
==31315==    by 0x404DF869: dl_open_worker (dl-open.c:221)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E00A8: __GI__dl_open (dl-open.c:505)
==31315==    by 0x404E1352: do_dlopen (dl-libc.c:80)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E130D: dlerror_run (dl-libc.c:42)
==31315==    by 0x404E1407: __GI___libc_dlopen_mode (dl-libc.c:155)
==31315==    by 0x403F8586: __gconv_find_shlib (gconv_dl.c:116)
==31315==    by 0x403F0745: gen_steps (gconv_db.c:255)
==31315==    by 0x403F0A3F: find_derivation (gconv_db.c:621)
==31315==    by 0x403F0FF5: __gconv_find_transform (gconv_db.c:722)
==31315==    by 0x403EF9BF: __gconv_open (gconv_open.c:172)
==31315==    by 0x403EF654: iconv_open (iconv_open.c:54)
==31315==    by 0x81C9FF3: smb_iconv_open (lib/iconv.c:225)
==31315==    by 0x81A94A8: init_iconv (lib/charcnv.c:131)
==31315==    by 0x807C253: handle_charset (param/loadparm.c:2726)
==31315==    by 0x807D131: lp_do_parameter (param/loadparm.c:3194)
==31315==    by 0x807D467: do_parameter (param/loadparm.c:3275)
==31315==    by 0x807F2D3: Parameter (param/params.c:444)
==31315==    by 0x807F5D3: Parse (param/params.c:499)
==31315==    by 0x807F7E3: pm_process (param/params.c:582)
==31315==    by 0x807E541: lp_load (param/loadparm.c:3955)
==31315==    by 0x8228322: reload_services (smbd/server.c:476)
==31315==    by 0x8228AFD: main (smbd/server.c:765)
==31315==  Address 0xFFFFE210 is not stack'd, malloc'd or free'd
==31315== 
==31315== Invalid read of size 1
==31315==    at 0x400118C4: (within /lib/ld-2.3.2.so)
==31315==    by 0x400062B3: _dl_map_object (in /lib/ld-2.3.2.so)
==31315==    by 0x4000AA18: (within /lib/ld-2.3.2.so)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x4000B490: _dl_map_object_deps (in /lib/ld-2.3.2.so)
==31315==    by 0x404DF90F: dl_open_worker (dl-open.c:255)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E00A8: __GI__dl_open (dl-open.c:505)
==31315==    by 0x404E1352: do_dlopen (dl-libc.c:80)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E130D: dlerror_run (dl-libc.c:42)
==31315==    by 0x404E1407: __GI___libc_dlopen_mode (dl-libc.c:155)
==31315==    by 0x403F8586: __gconv_find_shlib (gconv_dl.c:116)
==31315==    by 0x403F0745: gen_steps (gconv_db.c:255)
==31315==    by 0x403F0A3F: find_derivation (gconv_db.c:621)
==31315==    by 0x403F0FF5: __gconv_find_transform (gconv_db.c:722)
==31315==    by 0x403EF9BF: __gconv_open (gconv_open.c:172)
==31315==    by 0x403EF654: iconv_open (iconv_open.c:54)
==31315==    by 0x81C9FF3: smb_iconv_open (lib/iconv.c:225)
==31315==    by 0x81A94A8: init_iconv (lib/charcnv.c:131)
==31315==    by 0x807C253: handle_charset (param/loadparm.c:2726)
==31315==    by 0x807D131: lp_do_parameter (param/loadparm.c:3194)
==31315==    by 0x807D467: do_parameter (param/loadparm.c:3275)
==31315==    by 0x807F2D3: Parameter (param/params.c:444)
==31315==    by 0x807F5D3: Parse (param/params.c:499)
==31315==    by 0x807F7E3: pm_process (param/params.c:582)
==31315==    by 0x807E541: lp_load (param/loadparm.c:3955)
==31315==    by 0x8228322: reload_services (smbd/server.c:476)
==31315==    by 0x8228AFD: main (smbd/server.c:765)
==31315==  Address 0xFFFFE210 is not stack'd, malloc'd or free'd
==31315== 
==31315== Invalid read of size 1
==31315==    at 0x400118C4: (within /lib/ld-2.3.2.so)
==31315==    by 0x40006A46: _dl_map_object (in /lib/ld-2.3.2.so)
==31315==    by 0x4000AA18: (within /lib/ld-2.3.2.so)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x4000B490: _dl_map_object_deps (in /lib/ld-2.3.2.so)
==31315==    by 0x404DF90F: dl_open_worker (dl-open.c:255)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E00A8: __GI__dl_open (dl-open.c:505)
==31315==    by 0x404E1352: do_dlopen (dl-libc.c:80)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E130D: dlerror_run (dl-libc.c:42)
==31315==    by 0x404E1407: __GI___libc_dlopen_mode (dl-libc.c:155)
==31315==    by 0x403F8586: __gconv_find_shlib (gconv_dl.c:116)
==31315==    by 0x403F0745: gen_steps (gconv_db.c:255)
==31315==    by 0x403F0A3F: find_derivation (gconv_db.c:621)
==31315==    by 0x403F0FF5: __gconv_find_transform (gconv_db.c:722)
==31315==    by 0x403EF9BF: __gconv_open (gconv_open.c:172)
==31315==    by 0x403EF654: iconv_open (iconv_open.c:54)
==31315==    by 0x81C9FF3: smb_iconv_open (lib/iconv.c:225)
==31315==    by 0x81A94A8: init_iconv (lib/charcnv.c:131)
==31315==    by 0x807C253: handle_charset (param/loadparm.c:2726)
==31315==    by 0x807D131: lp_do_parameter (param/loadparm.c:3194)
==31315==    by 0x807D467: do_parameter (param/loadparm.c:3275)
==31315==    by 0x807F2D3: Parameter (param/params.c:444)
==31315==    by 0x807F5D3: Parse (param/params.c:499)
==31315==    by 0x807F7E3: pm_process (param/params.c:582)
==31315==    by 0x807E541: lp_load (param/loadparm.c:3955)
==31315==    by 0x8228322: reload_services (smbd/server.c:476)
==31315==    by 0x8228AFD: main (smbd/server.c:765)
==31315==  Address 0xFFFFE210 is not stack'd, malloc'd or free'd
==31315== 
==31315== Invalid read of size 1
==31315==    at 0x400118C4: (within /lib/ld-2.3.2.so)
==31315==    by 0x4000D050: _dl_check_map_versions (in /lib/ld-2.3.2.so)
==31315==    by 0x404DFE50: dl_open_worker (dl-open.c:260)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E00A8: __GI__dl_open (dl-open.c:505)
==31315==    by 0x404E1352: do_dlopen (dl-libc.c:80)
==31315==    by 0x4000BF15: _dl_catch_error (in /lib/ld-2.3.2.so)
==31315==    by 0x404E130D: dlerror_run (dl-libc.c:42)
==31315==    by 0x404E1407: __GI___libc_dlopen_mode (dl-libc.c:155)
==31315==    by 0x403F8586: __gconv_find_shlib (gconv_dl.c:116)
==31315==    by 0x403F0745: gen_steps (gconv_db.c:255)
==31315==    by 0x403F0A3F: find_derivation (gconv_db.c:621)
==31315==    by 0x403F0FF5: __gconv_find_transform (gconv_db.c:722)
==31315==    by 0x403EF9BF: __gconv_open (gconv_open.c:172)
==31315==    by 0x403EF654: iconv_open (iconv_open.c:54)
==31315==    by 0x81C9FF3: smb_iconv_open (lib/iconv.c:225)
==31315==    by 0x81A94A8: init_iconv (lib/charcnv.c:131)
==31315==    by 0x807C253: handle_charset (param/loadparm.c:2726)
==31315==    by 0x807D131: lp_do_parameter (param/loadparm.c:3194)
==31315==    by 0x807D467: do_parameter (param/loadparm.c:3275)
==31315==    by 0x807F2D3: Parameter (param/params.c:444)
==31315==    by 0x807F5D3: Parse (param/params.c:499)
==31315==    by 0x807F7E3: pm_process (param/params.c:582)
==31315==    by 0x807E541: lp_load (param/loadparm.c:3955)
==31315==    by 0x8228322: reload_services (smbd/server.c:476)
==31315==    by 0x8228AFD: main (smbd/server.c:765)
==31315==  Address 0xFFFFE210 is not stack'd, malloc'd or free'd
==31630== 
==31630== Conditional jump or move depends on uninitialised value(s)
==31630==    at 0x431B0354: __memp_fopen_int_4001 (in /usr/lib/libdb-4.1.so)
==31630==    by 0x431AFCFE: (within /usr/lib/libdb-4.1.so)
==31630==    by 0x4315E0F8: __db_dbenv_setup_4001 (in /usr/lib/libdb-4.1.so)
==31630==    by 0x4317064A: __db_dbopen_4001 (in /usr/lib/libdb-4.1.so)
==31630==    by 0x4317037F: __db_open_4001 (in /usr/lib/libdb-4.1.so)
==31630==    by 0x43134D2E: __db185_open_4001 (in /usr/lib/libdb-4.1.so)
==31630==    by 0x430ED6C0: (within /lib/libnss_ldap-2.3.2.so)
==31630==    by 0x430EE184: (within /lib/libnss_ldap-2.3.2.so)
==31630==    by 0x430EE211: (within /lib/libnss_ldap-2.3.2.so)
==31630==    by 0x430E6BB4: (within /lib/libnss_ldap-2.3.2.so)
==31630==    by 0x430E9C1C: _nss_ldap_initgroups_dyn (in /lib/libnss_ldap-2.3.2.so)
==31630==    by 0x4047E123: internal_getgrouplist (initgroups.c:175)
==31630==    by 0x4047E34A: initgroups (initgroups.c:264)
==31630==    by 0x821DDFF: getgrouplist_internals (lib/system_smbd.c:69)
==31630==    by 0x821DFC3: sys_getgrouplist (lib/system_smbd.c:129)
==31630==    by 0x81F835C: get_user_groups (auth/auth_util.c:682)
==31630==    by 0x81F92FA: make_server_info_info3 (auth/auth_util.c:1157)
==31630==    by 0x81F6077: domain_client_validate (auth/auth_domain.c:200)
==31630==    by 0x81F63A1: check_ntdomain_security (auth/auth_domain.c:299)
==31630==    by 0x81F4766: check_winbind_security (auth/auth_winbind.c:118)
==31630==    by 0x81F0B6E: check_ntlm_password (auth/auth.c:255)
==31630==    by 0x80A9ACC: reply_sesssetup_and_X (smbd/sesssetup.c:781)
==31630==    by 0x80C7DC9: switch_message (smbd/process.c:767)
==31630==    by 0x80C802F: construct_reply (smbd/process.c:797)
==31630==    by 0x80C823B: process_smb (smbd/process.c:897)
==31630==    by 0x80C8EB7: smbd_process (smbd/process.c:1328)
==31630==    by 0x8228D4B: main (smbd/server.c:887)

-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux srv-lnx2600 2.6.1-bk2-nfs-stale-file-handles #2 SMP Fri Jan 16 15:11:17 PST 2004 i686
Locale: LANG=C, LC_CTYPE=C

Versions of packages libc6 depends on:
ii  libdb1-compat                 2.1.3-7    The Berkeley database routines [gl

-- no debconf information
Reply to:
Follow-Ups:
- Bug#230198: libc6: a
  - From: Jeremy Nimmer <jwnimmer@alum.mit.edu>
Prev by Date: Re: Bug 223210 (sysklogd): linux-kernel-headers bug?
Next by Date: Bug#230198: libc6: a
Previous by thread: Re: Re: Bug 223210 (sysklogd): linux-kernel-headers bug?
Next by thread: Bug#230198: libc6: a
Index(es):
- Date
- Thread