Your message dated Thu, 20 Oct 2016 07:33:47 +0000
with message-id <[email protected]>
and subject line Bug#840771: fixed in dumpasn1 20150808-3
has caused the Debian Bug report #840771,
regarding segfaults on valid certificate
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
840771: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840771
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: dumpasn1
Version: 20150808-1
Severity: normal
dumpasn1 segfaults on some certificates when printing Unicode strings.
E.g. you can try it with the certificate downloaded from
http://www.grfc.ru/upload/medialibrary/eec/016301.p7b
Valgrind backtrace:
144 58: SET {
146 56: SEQUENCE {
148 3: OBJECT IDENTIFIER streetAddress (2 5 4 9)
153 49: UTF8String
==31111== Invalid read of size 4
==31111== at 0x4ED2D19: wcsnlen (wcsnlen.c:31)
==31111== by 0x4ED2556: wcsrtombs (wcsrtombs.c:104)
==31111== by 0x4E6D0D0: wcstombs (wcstombs.c:34)
==31111== by 0x402998: displayUnicode (dumpasn1.c:1325)
==31111== by 0x403B46: displayString (dumpasn1.c:1914)
==31111== by 0x405C58: printASN1object (dumpasn1.c:2823)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== Address 0x414 is not stack'd, malloc'd or (recently) free'd
==31111==
==31111==
==31111== Process terminating with default action of signal 11 (SIGSEGV)
==31111== Access not within mapped region at address 0x414
==31111== at 0x4ED2D19: wcsnlen (wcsnlen.c:31)
==31111== by 0x4ED2556: wcsrtombs (wcsrtombs.c:104)
==31111== by 0x4E6D0D0: wcstombs (wcstombs.c:34)
==31111== by 0x402998: displayUnicode (dumpasn1.c:1325)
==31111== by 0x403B46: displayString (dumpasn1.c:1914)
==31111== by 0x405C58: printASN1object (dumpasn1.c:2823)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== If you believe this happened as a result of a stack
==31111== overflow in your program's main thread (unlikely but
==31111== possible), you can try to increase the size of the
==31111== main thread stack using the --main-stacksize= flag.
==31111== The main thread stack size used in this run was 8388608.
--
With best wishes
Dmitry
-- System Information:
Debian Release: stretch/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.7.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=ru_RU.utf8, LC_CTYPE=ru_RU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
Versions of packages dumpasn1 depends on:
ii libc6 2.24-3
dumpasn1 recommends no packages.
dumpasn1 suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: dumpasn1
Source-Version: 20150808-3
We believe that the bug you reported is fixed in the latest version of
dumpasn1, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mathieu Malaterre <[email protected]> (supplier of updated dumpasn1 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 20 Oct 2016 09:18:29 +0200
Source: dumpasn1
Binary: dumpasn1
Architecture: source
Version: 20150808-3
Distribution: unstable
Urgency: medium
Maintainer: Mathieu Malaterre <[email protected]>
Changed-By: Mathieu Malaterre <[email protected]>
Description:
dumpasn1 - ASN.1 object dump program
Closes: 840771
Changes:
dumpasn1 (20150808-3) unstable; urgency=medium
.
* Really fix segfaults on valid certificate. Closes: #840771
Checksums-Sha1:
9112120ce6ca7fb266707a463a57a813744cd2ee 1873 dumpasn1_20150808-3.dsc
7c1443b64521e8cd2f74c841d81ac546d2a357d1 6648 dumpasn1_20150808-3.debian.tar.xz
Checksums-Sha256:
42c27d2da9bf2e798c94952e5356487bad724959b0ff053754f9c26ad2dd5354 1873
dumpasn1_20150808-3.dsc
7bfe13091808d8fb243e32cd632e5cecda2bc6c7d92a5257390255354f355412 6648
dumpasn1_20150808-3.debian.tar.xz
Files:
8c4ac0dec4b61f3746db4f885a5340ef 1873 utils optional dumpasn1_20150808-3.dsc
876bc2f5551963f60535c8c0c04c10f7 6648 utils optional
dumpasn1_20150808-3.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=6HYD
-----END PGP SIGNATURE-----
--- End Message ---
