[Bug 287109] Re: [SRU] slirpvde buffer overflow

Thu Apr 16 16:15:48 UTC 2009

Minimal debdiff fixing this for intrepid.

** Summary changed:

- slirpvde: buffer overflow
+ [SRU] slirpvde buffer overflow

** Description changed:

- $ slirpvde -s /tmp/switch1
- *** buffer overflow detected ***: slirpvde terminated
- ======= Backtrace: =========                         
- /lib/libc.so.6(__fortify_fail+0x37)[0x7fc64b9af887]  
- /lib/libc.so.6[0x7fc64b9ad750]                       
- /lib/libc.so.6[0x7fc64b9adde7]
- slirpvde[0x40b3c4]
- /lib/libc.so.6(__libc_start_main+0xe6)[0x7fc64b8ce466]
- slirpvde[0x401ca9]
- ======= Memory map: ========
- 00400000-0040f000 r-xp 00000000 08:03 3944288                            /usr/bin/slirpvde
- 0060e000-0060f000 r--p 0000e000 08:03 3944288                            /usr/bin/slirpvde
- 0060f000-00610000 rw-p 0000f000 08:03 3944288                            /usr/bin/slirpvde
- 00610000-00611000 rw-p 00610000 00:00 0
- 01fbd000-01fde000 rw-p 01fbd000 00:00 0                                  [heap]
- 7fc64b698000-7fc64b6ae000 r-xp 00000000 08:03 10960944                   /lib/libgcc_s.so.1
- 7fc64b6ae000-7fc64b8ae000 ---p 00016000 08:03 10960944                   /lib/libgcc_s.so.1
- 7fc64b8ae000-7fc64b8af000 r--p 00016000 08:03 10960944                   /lib/libgcc_s.so.1
- 7fc64b8af000-7fc64b8b0000 rw-p 00017000 08:03 10960944                   /lib/libgcc_s.so.1
- 7fc64b8b0000-7fc64ba19000 r-xp 00000000 08:03 10961157                   /lib/libc-2.8.90.so
- 7fc64ba19000-7fc64bc18000 ---p 00169000 08:03 10961157                   /lib/libc-2.8.90.so
- 7fc64bc18000-7fc64bc1c000 r--p 00168000 08:03 10961157                   /lib/libc-2.8.90.so
- 7fc64bc1c000-7fc64bc1d000 rw-p 0016c000 08:03 10961157                   /lib/libc-2.8.90.so
- 7fc64bc1d000-7fc64bc22000 rw-p 7fc64bc1d000 00:00 0
- 7fc64bc22000-7fc64bc24000 r-xp 00000000 08:03 10961160                   /lib/libdl-2.8.90.so
- 7fc64bc24000-7fc64be24000 ---p 00002000 08:03 10961160                   /lib/libdl-2.8.90.so
- 7fc64be24000-7fc64be25000 r--p 00002000 08:03 10961160                   /lib/libdl-2.8.90.so
- 7fc64be25000-7fc64be26000 rw-p 00003000 08:03 10961160                   /lib/libdl-2.8.90.so
- 7fc64be26000-7fc64be2a000 r-xp 00000000 08:03 3943265                    /usr/lib/libvdeplug.so.2.1.0
- 7fc64be2a000-7fc64c029000 ---p 00004000 08:03 3943265                    /usr/lib/libvdeplug.so.2.1.0
- 7fc64c029000-7fc64c02a000 r--p 00003000 08:03 3943265                    /usr/lib/libvdeplug.so.2.1.0
- 7fc64c02a000-7fc64c02b000 rw-p 00004000 08:03 3943265                    /usr/lib/libvdeplug.so.2.1.0
- 7fc64c02b000-7fc64c04a000 r-xp 00000000 08:03 10960957                   /lib/ld-2.8.90.so
- 7fc64c22c000-7fc64c22e000 rw-p 7fc64c22c000 00:00 0
- 7fc64c246000-7fc64c249000 rw-p 7fc64c246000 00:00 0
- 7fc64c249000-7fc64c24a000 r--p 0001e000 08:03 10960957                   /lib/ld-2.8.90.so
- 7fc64c24a000-7fc64c24b000 rw-p 0001f000 08:03 10960957                   /lib/ld-2.8.90.so
- 7fff54235000-7fff5424a000 rw-p 7ffffffea000 00:00 0                      [stack]
- 7fff543fe000-7fff543ff000 r-xp 7fff543fe000 00:00 0                      [vdso]
- ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0                  [vsyscall]
- Abandon
+ slirpvde crashes consequently with a buffer owerflow when being started.

- ps: same error with sudo
+ == SRU request for intrepid: ==
+ Rationale:
+ slirpvde is currently not working at all.
+ 
+ Development version:
+ Already fixed in jaunty with the same patch as being proposed here.
+ 
+ How to reproduce:
+ Run slirpvde; it crashes with a detected buffer overflow. Using the patched version slirpvde doesn't crash and works.
+ 
+ Regression potential:
+ Insignificant. The patch only touches the slirpvde specific code; and slirpvde is non-working currently.

** Attachment added: "vde2_2.2.2-3ubuntu0.1.debdiff"
   http://launchpadlibrarian.net/25544980/vde2_2.2.2-3ubuntu0.1.debdiff

** Also affects: vde2 (Ubuntu Intrepid)
   Importance: Undecided
       Status: New

-- 
[SRU] slirpvde buffer overflow
https://bugs.launchpad.net/bugs/287109
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs