[Bug 1011477] Re: cron-apt buffer overflow with high pid numbers

Adam Gandelman Thu, 20 Jun 2013 19:32:13 -0700

Just confirmed on precise 12.04

root@testing:/home/ubuntu# cat /etc/lsb-release 
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=12.04
DISTRIB_CODENAME=precise
DISTRIB_DESCRIPTION="Ubuntu 12.04.2 LTS"
root@testing:/home/ubuntu# dpkg -l | grep liblockfile
ii  liblockfile-bin                     1.09-3                       support 
binaries for and cli utilities based on liblockfile
ii  liblockfile1                        1.09-3                       NFS-safe 
locking library


root@testing:/home/ubuntu# echo $BASHPID
1012680
root@testing:/home/ubuntu# lockfile-create /tmp/lockfile --use-pid
*** buffer overflow detected ***: lockfile-create terminated
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x37)[0x7f14c2723817]
/lib/x86_64-linux-gnu/libc.so.6(+0x109710)[0x7f14c2722710]
/lib/x86_64-linux-gnu/libc.so.6(+0x108b79)[0x7f14c2721b79]
/lib/x86_64-linux-gnu/libc.so.6(_IO_default_xsputn+0xdd)[0x7f14c269513d]
/lib/x86_64-linux-gnu/libc.so.6(_IO_vfprintf+0x1ae7)[0x7f14c26634a7]
/lib/x86_64-linux-gnu/libc.so.6(__vsprintf_chk+0x94)[0x7f14c2721c14]
/lib/x86_64-linux-gnu/libc.so.6(__sprintf_chk+0x7d)[0x7f14c2721b5d]
/usr/lib/x86_64-linux-gnu/liblockfile.so.1(+0x1b26)[0x7f14c29d9b26]
/usr/lib/x86_64-linux-gnu/liblockfile.so.1(lockfile_create+0x61)[0x7f14c29d9dd1]
lockfile-create[0x400f21]
/lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed)[0x7f14c263a76d]
lockfile-create[0x4012c5]
======= Memory map: ========
00400000-00402000 r-xp 00000000 fd:01 4401                               
/usr/bin/lockfile-create
00602000-00603000 r--p 00002000 fd:01 4401                               
/usr/bin/lockfile-create
00603000-00604000 rw-p 00003000 fd:01 4401                               
/usr/bin/lockfile-create
0201a000-0203b000 rw-p 00000000 00:00 0                                  [heap]
7f14c2403000-7f14c2418000 r-xp 00000000 fd:01 2995                       
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f14c2418000-7f14c2617000 ---p 00015000 fd:01 2995                       
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f14c2617000-7f14c2618000 r--p 00014000 fd:01 2995                       
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f14c2618000-7f14c2619000 rw-p 00015000 fd:01 2995                       
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f14c2619000-7f14c27ce000 r-xp 00000000 fd:01 3071                       
/lib/x86_64-linux-gnu/libc-2.15.so
7f14c27ce000-7f14c29cd000 ---p 001b5000 fd:01 3071                       
/lib/x86_64-linux-gnu/libc-2.15.so
7f14c29cd000-7f14c29d1000 r--p 001b4000 fd:01 3071                       
/lib/x86_64-linux-gnu/libc-2.15.so
7f14c29d1000-7f14c29d3000 rw-p 001b8000 fd:01 3071                       
/lib/x86_64-linux-gnu/libc-2.15.so
7f14c29d3000-7f14c29d8000 rw-p 00000000 00:00 0 
7f14c29d8000-7f14c29db000 r-xp 00000000 fd:01 11024                      
/usr/lib/x86_64-linux-gnu/liblockfile.so.1.0
7f14c29db000-7f14c2bda000 ---p 00003000 fd:01 11024                      
/usr/lib/x86_64-linux-gnu/liblockfile.so.1.0
7f14c2bda000-7f14c2bdb000 r--p 00002000 fd:01 11024                      
/usr/lib/x86_64-linux-gnu/liblockfile.so.1.0
7f14c2bdb000-7f14c2bdc000 rw-p 00003000 fd:01 11024                      
/usr/lib/x86_64-linux-gnu/liblockfile.so.1.0
7f14c2bdc000-7f14c2bfe000 r-xp 00000000 fd:01 2944                       
/lib/x86_64-linux-gnu/ld-2.15.so
7f14c2df4000-7f14c2df7000 rw-p 00000000 00:00 0 
7f14c2dfb000-7f14c2dfe000 rw-p 00000000 00:00 0 
7f14c2dfe000-7f14c2dff000 r--p 00022000 fd:01 2944                       
/lib/x86_64-linux-gnu/ld-2.15.so
7f14c2dff000-7f14c2e01000 rw-p 00023000 fd:01 2944                       
/lib/x86_64-linux-gnu/ld-2.15.so
7fff887f1000-7fff88812000 rw-p 00000000 00:00 0                          [stack]
7fff88917000-7fff88918000 r-xp 00000000 00:00 0                          [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0                  
[vsyscall]
Aborted (core dumped)liblockfile1

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1011477

Title:
  cron-apt buffer overflow with high pid numbers

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/liblockfile/+bug/1011477/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1011477] Re: cron-apt buffer overflow with high pid numbers

Reply via email to