[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Patch: buffer overflow in info in get_manpage_node()

From: James Chang
Subject: Re: Patch: buffer overflow in info in get_manpage_node()
Date: Fri, 06 Mar 2015 10:07:50 -0800
User-agent: Mozilla/5.0 (X11; SunOS i86pc; rv:17.0) Gecko/20141217 Thunderbird/17.0.11

Thanks Gavin. It's crazy, but I guess that's what our stress testing does?! Have a good weekend!


On 03/ 6/15 12:31 AM, Gavin Smith wrote:
On 4 March 2015 at 19:28, James Chang <address@hidden> wrote:
   # info <string > 1kB>/<name of valid man page>

dumps core with Segmentation Fault.

# info `perl -e 'print"a"x2000'`/man
   Segmentation Fault (core dumped)

--- texinfo-4.13/info/man.c     Sat Jul  5 16:32:19 2008
+++ texinfo-4.13/info/man.c     Tue Mar  3 15:02:03 2015

Dear James,

Thank you for the report. The last version released was 5.2, but there
was a similar issue in the most recent version anyway. I've committed
a change to not use a fixed-length buffer. I don't know why anybody
would be asking for a manpage with 1000's of bytes in its name, but I
guess it is useful to be able to ignore these things when looking for
other flaws.


reply via email to

[Prev in Thread] Current Thread [Next in Thread]