Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > gnu.bash.bug > #11500
| From | Chet Ramey <chet.ramey@case.edu> |
|---|---|
| Newsgroups | gnu.bash.bug |
| Subject | Re: 4-byte script triggers null ptr deref and segfault |
| Date | 2015-09-17 21:57 -0400 |
| Organization | ITS, Case Western Reserve University |
| Message-ID | <mailman.1340.1442541442.19560.bug-bash@gnu.org> (permalink) |
| References | <CANMVOuxZHorUcwPC2eKZ+cokFjsQLvJ7tw1V_xBnGoTG=z2cSQ@mail.gmail.com> |
On 9/17/15 12:50 PM, Brian Carpenter wrote: > While fuzzing GNU bash version 4.3.42(1)-release > (x86_64-unknown-linux-gnu) with AFL(http://lcamtuf.coredump.cx/afl), I > stumbled upon a 4-byte 'script' that triggers a null ptr deref and causes a > segfault. > > https://savannah.gnu.org/support/index.php?108885 Thanks for the report. This was fixed late last October, and the fix is in the devel branch and bash-4.4-alpha. Chet -- ``The lyf so short, the craft so long to lerne.'' - Chaucer ``Ars longa, vita brevis'' - Hippocrates Chet Ramey, ITS, CWRU chet@case.edu http://cnswww.cns.cwru.edu/~chet/
Back to gnu.bash.bug | Previous | Next | Find similar
Re: 4-byte script triggers null ptr deref and segfault Chet Ramey <chet.ramey@case.edu> - 2015-09-17 21:57 -0400
csiph-web