Re: info command segmentation fault

bug-texinfo

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: info command segmentation fault

From:	Sergey Poznyakoff
Subject:	Re: info command segmentation fault
Date:	Sat, 08 Aug 2015 18:17:06 +0300

Ivan Pacheco <address@hidden> ha escrit:

> Hi. Just by curiosity I found a segfault inside the command info. If used 
> well it can be a serious vulnerability.
> 
> Command:
> 
> $ info -k l

That happens due to a malformed dir entry, e.g.:

   * gdbm_dump: gdbm_dump(gdbm).

The resulting reference entry contails filename=NULL, which causes
coredump.  The fix for this particular problem is attached.

Regards,
Sergey

Index: info-utils.c
===================================================================
--- info-utils.c        (revision 6335)
+++ info-utils.c        (working copy)
@@ -1487,6 +1487,8 @@

       length = skip_whitespace (inptr);
       length += read_bracketed_filename (inptr + length, &entry->filename);
+      if (!entry->filename)
+       return 0;
       length += strspn (inptr + length, " ");

       /* Get the node name. */

[Prev in Thread]

Current Thread

[Next in Thread]

info command segmentation fault, Ivan Pacheco, 2015/08/08
- Re: info command segmentation fault, Sergey Poznyakoff <=
  - Re: info command segmentation fault, Gavin Smith, 2015/08/08
  - Re: info command segmentation fault, Gavin Smith, 2015/08/12

Prev by Date: Re: hat accent bug
Next by Date: Re: info command segmentation fault
Previous by thread: info command segmentation fault
Next by thread: Re: info command segmentation fault
Index(es):
- Date
- Thread