Segmentation fault in radium 3.0.7.12 (while parsing ArgusMinSsf) - Patch

maketsi maketsi at gmail.com
Wed Aug 14 02:36:11 EDT 2013


Radium crashes with sasl and debugging enabled due to invalid format string
to vnsprintf.
Here's a patch fixing that. I haven't yet tested comprehensively if there
are more bugs here, but here's the first step. Sasl still refuses to work,
but that's another issue.

Program received signal SIGSEGV, Segmentation fault.
0x00000035dec78d50 in strlen () from /lib64/libc.so.6
(gdb) bt
#0  0x00000035dec78d50 in strlen () from /lib64/libc.so.6
#1  0x00000035dec46f97 in vfprintf () from /lib64/libc.so.6
#2  0x00000035dec68b2a in vsnprintf () from /lib64/libc.so.6
#3  0x000000000043c88f in ArgusDebug (d=1, fmt=0x4b1540
"RadiumParseResourceFile: ArgusMinSsf \"%s\" \n") at ./argus_util.c:19479
#4  0x0000000000406971 in RadiumParseResourceFile (parser=0x2aaaab303010,
file=0xfae8a0 "/etc/radium-test.conf") at ./radium.c:857
#5  0x0000000000404952 in ArgusClientInit (parser=0x2aaaab303010) at
./radium.c:131
#6  0x0000000000407108 in main (argc=5, argv=0x7fffffffe878) at
./argus_main.c:190
(gdb) f 3
#3  0x000000000043c88f in ArgusDebug (d=1, fmt=0x4b1540
"RadiumParseResourceFile: ArgusMinSsf \"%s\" \n") at ./argus_util.c:19479
19479         (void) vsnprintf (ptr, (MAXSTRLEN - strlen(buf)), fmt, ap);
(gdb) p ptr
$1 = 0x7fffffffb373 "RadiumParseResourceFile: ArgusMinSsf \""
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20130814/c7702816/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: radium-3.0.7.12-argusminssf.patch
Type: application/octet-stream
Size: 1319 bytes
Desc: not available
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20130814/c7702816/attachment.obj>


More information about the argus mailing list