libdb-5.3.so+0x149de0) in __memp_sync_int

bugzilla Sat, 15 Jul 2023 01:03:49 -0700

https://bz.apache.org/bugzilla/show_bug.cgi?id=66691


            Bug ID: 66691
           Summary: AddressSanitizer: SEGV
                    (/lib/x86_64-linux-gnu/libdb-5.3.so+0x149de0) in
                    __memp_sync_int
           Product: Apache httpd-2
           Version: 2.4.54
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: mod_authn_dbm
          Assignee: [email protected]
          Reporter: [email protected]
  Target Milestone: ---

Created attachment 38604
  --> https://bz.apache.org/bugzilla/attachment.cgi?id=38604&action=edit
crash seed

Hello htdbm developers,
We recently conducted a fuzzing test on htdbm and discovered a SEGV bug. We
would like to provide a detailed description of the bug and seek your
assistance in addressing it.

version:
htdbm: 2.4.54
gcc:gcc version 9.4.0 (Ubuntu 9.4.0-1ubuntu1~20.04.1)
ubuntu: 20.04

command to reproduce:
htdbm -b SEGV_1 
SEGV_1 is attached to this report.


ASAN report:
=================================================================
==2664325==ERROR: AddressSanitizer: SEGV on unknown address (pc 0x7fe698f9ade0
bp 0x000000000001 sp 0x7ffde6d10f50 T0)
==2664325==The signal is caused by a READ memory access.
==2664325==Hint: this fault was caused by a dereference of a high value address
(see register values below).  Disassemble the provided pc to learn which
register was used.
    #0 0x7fe698f9ade0 in __memp_sync_int
(/lib/x86_64-linux-gnu/libdb-5.3.so+0x149de0)
    #1 0x7fe698f32d26 in __db_sync (/lib/x86_64-linux-gnu/libdb-5.3.so+0xe1d26)
    #2 0x7fe698f30941 in __db_refresh
(/lib/x86_64-linux-gnu/libdb-5.3.so+0xdf941)
    #3 0x7fe698f30e59 in __db_close
(/lib/x86_64-linux-gnu/libdb-5.3.so+0xdfe59)
    #4 0x7fe698f4294c in __db_close_pp
(/lib/x86_64-linux-gnu/libdb-5.3.so+0xf194c)
    #5 0x4d0c61 in htdbm_terminate
/home/root/sp/Dataset/Httpd/httpd_aflpp/support/htdbm.c:92:9
    #6 0x4cde6c in main
/home/root/sp/Dataset/Httpd/httpd_aflpp/support/htdbm.c:469:5
    #7 0x7fe69a853082 in __libc_start_main
/build/glibc-SzIz7B/glibc-2.31/csu/../csu/libc-start.c:308:16
    #8 0x41d58d in _start
(/home/root/sp/Fuzz/aflpp_fuzz/Httpd/document_group/mb/htdbm_1/htdbm+0x41d58d)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/lib/x86_64-linux-gnu/libdb-5.3.so+0x149de0)
in __memp_sync_int
==2664325==ABORTING

Thank you for your attention and support.
Best regards,
Michael Zhang.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[Bug 66691] New: AddressSanitizer: SEGV (/lib/x86_64-linux-gnu/libdb-5.3.so+0x149de0) in __memp_sync_int

Reply via email to