It looks like the cause is the HTTP chunk handling. Testing of this code
showed a couple of buffer overruns, which are now fixed in snapd-glib
1.40.
** Also affects: gnome-software (Ubuntu Cosmic)
Importance: Medium
Status: Confirmed
** Also affects: gnome-software (Ubuntu Bionic)
Importance: Undecided
Status: New
** Changed in: gnome-software (Ubuntu Cosmic)
Status: Confirmed => Fix Committed
** Changed in: gnome-software (Ubuntu Bionic)
Status: New => Triaged
** Changed in: gnome-software (Ubuntu Bionic)
Importance: Undecided => High
** Changed in: gnome-software (Ubuntu Cosmic)
Importance: Medium => High
** Changed in: gnome-software (Ubuntu Cosmic)
Assignee: (unassigned) => Robert Ancell (robert-ancell)
** Changed in: gnome-software (Ubuntu Bionic)
Assignee: (unassigned) => Robert Ancell (robert-ancell)
** Changed in: gnome-software (Ubuntu Bionic)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1740865
Title:
gnome-software (5) g_realloc → g_array_maybe_expand → g_array_set_size
→ g_byte_array_set_size → read_cb
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/snapd-glib/+bug/1740865/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
