Am Dienstag, den 05.12.2017, 19:17 +0100 schrieb Aurelien Jarno: > On 2017-12-03 17:34, Tim Rühsen wrote: > > Package: libc6 > > Version: 2.25-3 > > Severity: normal > > > > Dear Maintainer, > > > > valgrinding a C code shows the following: > > > > ==27943== 4,096 bytes in 1 blocks are definitely lost in loss > > record 3 of 3 > > ==27943== by 0x6C27715: getpwnam_r@@GLIBC_2.2.5 > > (getXXbyYY_r.c:314) > > ==27943== by 0x4E8569F: rpl_glob (glob.c:781) > > > > That rpl_glob() is gnulib's glob replacement. The code there looks > > good. > > And valgrind doesn't/didn't show this leak with previous (2.24 and > > lower) > > versions of glibc. > > > > I can't currently provide you with a short reproducer (out of time > > here). > > It's not something I can reproduce here, but getpwnam_r can behave > very > differently depending on the nss configuration your system. A small > reproducer and the content of /etc/nsswitch.conf would definitely > help. > I'll try to make up a reproducer the next days. Here is more info that I have to far. ### nsswitch.conf ### passwd: compat systemd group: compat systemd shadow: compat hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4 networks: files protocols: db files services: db files ethers: db files rpc: db files netgroup: nis > That said libc6 version 2.25-3 included security fixes and memory > leak > fixes for the glob function. Can you confirm the version you used, > and > if it's really 2.25-3 try with version 2.25-2 which is still in > testing. > The glob issues have been found by me when fuzzing GNU Wget2. Reported via gnulib mailing list :-) Just updated my stretch VM to testing... I can reproduce the issue with 2.25-2 (testing) and with 2.25-3 (unstable). Regards, Tim
Attachment:
signature.asc
Description: This is a digitally signed message part