Re: Bad input checking - a bug?

To: debian-mentors@lists.debian.org
Subject: Re: Bad input checking - a bug?
From: "Bernhard R. Link" <brlink@debian.org>
Date: Thu, 14 Apr 2005 09:19:53 +0200
Message-id: <[🔎] 20050414071952.GA3411@mimosa.informatik.uni-freiburg.de>
Mail-followup-to: debian-mentors@lists.debian.org
In-reply-to: <[🔎] lnbj3d.j9.ln@217.195.78.211>
References: <[🔎] lnbj3d.j9.ln@217.195.78.211>

* Al Nikolov <al@iac.spb.ru> [050413 17:36]:
> Please consult me. A bad checking of "unexpected" command-line arguments
> causing segmentation fault - is that behaviour must be counted as a
> grave/normal/minor bug?

I'd suggest: 
 - bad checking -> minor or normal, depending what "unexpected" means.
 - same causing segfault -> normal (segfaults are never minor in my eyes)

 - causing segfault in a way that could be exploitable and the arguments
   are normaly supplied by something the user has no control over (like
   it may be normal your browser calls it with arguments coming from the
   net in a way to provoke this) -> grave and tag it security.

 - causing segfault in a way that could be exploitable and the arguments
   are not from the same user/group the program is running as. (Like
   a suid/sgid-binary, being normaly called from a cgi with the
   arguments coming from the net [I hope nothing does so stupid things,
   as it is hard to do so without additional holes] in a way to trigger
   this and so on -> critical and tag in security

Hochachtungsvoll,
  Bernhard R. Link

Reply to:

References:
- Bad input checking - a bug?
  - From: Al Nikolov <al@iac.spb.ru>

Prev by Date: RFS: wpp -- The Web Preprocessor - a Perl script to preprocess HTML files
Next by Date: Re: Sources with missing dependencies
Previous by thread: Re: Bad input checking - a bug?
Next by thread: checking a NEWS.Debian file with dpkg-parsechangelog
Index(es):
- Date
- Thread