[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Patch: buffer overflow in info in get_manpage_node()
From: |
Gavin Smith |
Subject: |
Re: Patch: buffer overflow in info in get_manpage_node() |
Date: |
Fri, 6 Mar 2015 08:31:39 +0000 |
On 4 March 2015 at 19:28, James Chang <address@hidden> wrote:
> # info <string > 1kB>/<name of valid man page>
>
> dumps core with Segmentation Fault.
>
> # info `perl -e 'print"a"x2000'`/man
> Segmentation Fault (core dumped)
>
>
> Patch:
> --- texinfo-4.13/info/man.c Sat Jul 5 16:32:19 2008
> +++ texinfo-4.13/info/man.c Tue Mar 3 15:02:03 2015
Dear James,
Thank you for the report. The last version released was 5.2, but there
was a similar issue in the most recent version anyway. I've committed
a change to not use a fixed-length buffer. I don't know why anybody
would be asking for a manpage with 1000's of bytes in its name, but I
guess it is useful to be able to ignore these things when looking for
other flaws.
Thanks
Gavin