Bug#521737: Root cause of SEGV is known for quite some time, still suspected bug

To: 521737@bugs.debian.org
Subject: Bug#521737: Root cause of SEGV is known for quite some time, still suspected bug
From: Michael Tautschnig <mt@debian.org>
Date: Mon, 30 Mar 2009 16:27:05 +0200
Message-id: <[🔎] 20090330142604.GB66129@l04.thnet>
Reply-to: Michael Tautschnig <mt@debian.org>, 521737@bugs.debian.org

Hi all,

I just found the following on the net:

http://www.alphalinux.org/archives/axp-list/March2001/0337.shtml

It seems that the possible SEGV in memchr is well known if an overestimated
third argument (the maximum length to be scanned) is passed in. Therefore I'd
say that the bug is acutually in a subroutine of strstr that passes a too large
value to memchr (I think it was str_two_way_short_needle), which is unportable
code.

Best,
Michael

Attachment: pgppIUhJhviTv.pgp
Description: PGP signature

Reply to:

Prev by Date: Bug#521439: samba: Samba server crash on browse
Next by Date: Bug#521863: popen broken on some systems
Previous by thread: Bug#521807: [INTL:es] Spanish debconf template translation for tzdata
Next by thread: Bug#521863: popen broken on some systems
Index(es):
- Date
- Thread