Heap buffer overread in get

bug-bash

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Heap buffer overread in get_exitstat

From:	jeremy
Subject:	Heap buffer overread in get_exitstat
Date:	Tue, 20 Feb 2018 21:42:06 +0100
User-agent:	Mutt/1.9.3 (2018-01-21)






Configuration Information [Automatically generated, do not change]:
Machine: i686
OS: linux-gnu
Compiler: afl-gcc
Compilation CFLAGS:  -DPROGRAM='bash' -DCONF_HOSTTYPE='i686' 
-DCONF_OSTYPE='linux-gnu' -DCONF_MACHTYPE='i686-pc-linux-gnu' 
-DCONF_VENDOR='pc' -DLOCALEDIR='/usr/local/share/locale' -DPACKAGE='bash' 
-DSHELL -DHAVE_CONFIG_H   -I.  -I. -I./include -I./lib   -fsanitize=address 
-Wno-parentheses -Wno-format-security
uname output: Linux jefeus-vm 4.9.0-4-686-pae #1 SMP Debian 4.9.65-3+deb9u1 
(2017-12-23) i686 GNU/Linux
Machine Type: i686-pc-linux-gnu

Bash Version: 4.4
Patch Level: 19
Release Status: release

Description:
        When calling bash -e <file> (where <file> is a file conaining
        the string "exit -"), a heap buffer overread of size 1 in
        builtins/common.c:505 occurs. This is presumably caused by the absence 
of a
        check if a number follows the "-" sign.

Repeat-By:
        In order to get bash to run with the compiler flags mentioned
above, one must add the --without-bash-malloc or else bash
segfaults on startup.

[Prev in Thread]

Current Thread

[Next in Thread]

Heap buffer overread in get_exitstat, jeremy <=
- Re: Heap buffer overread in get_exitstat, Chet Ramey, 2018/02/21

Prev by Date: bash completion crash
Next by Date: Heap buffer overread in token_is_assignment
Previous by thread: bash completion crash
Next by thread: Re: Heap buffer overread in get_exitstat
Index(es):
- Date
- Thread