It looks like the cause is the HTTP chunk handling. Testing of this code showed a couple of buffer overruns, which are now fixed in snapd-glib 1.40.
** Also affects: gnome-software (Ubuntu Cosmic) Importance: Medium Status: Confirmed ** Also affects: gnome-software (Ubuntu Bionic) Importance: Undecided Status: New ** Changed in: gnome-software (Ubuntu Cosmic) Status: Confirmed => Fix Committed ** Changed in: gnome-software (Ubuntu Bionic) Status: New => Triaged ** Changed in: gnome-software (Ubuntu Bionic) Importance: Undecided => High ** Changed in: gnome-software (Ubuntu Cosmic) Importance: Medium => High ** Changed in: gnome-software (Ubuntu Cosmic) Assignee: (unassigned) => Robert Ancell (robert-ancell) ** Changed in: gnome-software (Ubuntu Bionic) Assignee: (unassigned) => Robert Ancell (robert-ancell) ** Changed in: gnome-software (Ubuntu Bionic) Status: Triaged => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1740865 Title: gnome-software (5) g_realloc → g_array_maybe_expand → g_array_set_size → g_byte_array_set_size → read_cb To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/snapd-glib/+bug/1740865/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs