[bug #19923] root-only buffer overrun in locate from findutils-4.3.x

bug-findutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug #19923] root-only buffer overrun in locate from findutils-4.3.x

From:	anonymous
Subject:	[bug #19923] root-only buffer overrun in locate from findutils-4.3.x
Date:	Mon, 21 May 2007 22:13:36 +0000
User-agent:	Mozilla/5.0 (compatible; Konqueror/3.5; Linux; X11) KHTML/3.5.6 (like Gecko)

Follow-up Comment #1, bug #19923 (project findutils):

Um, if one byte of `what' was always what was overwritten, then
-fstack-protector wouldn't have caught this problem. The guard (adjacent to
`what') must have been smashed. (This won't smash the return address on
32-bit hosts and will probably not do so on 64-bit hosts either: I'd say
`certainly not' only I don't have any 64-bit hosts here to test against.)

(However, I seem to recall that -fstack-protector reorders variables as well
as canarying them, in which case your statement is correct when the stack
protector is off. I can't recall. Sorry.)

    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/bugs/?19923>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/

[Prev in Thread]

Current Thread

[Next in Thread]

[bug #19923] root-only buffer overrun in locate from findutils-4.3.x, James Youngman, 2007/05/21
- [bug #19923] root-only buffer overrun in locate from findutils-4.3.x, anonymous <=

Prev by Date: [bug #19923] root-only buffer overrun in locate from findutils-4.3.x
Next by Date: Re: findutils-4.3.6 build feedback
Previous by thread: [bug #19923] root-only buffer overrun in locate from findutils-4.3.x
Next by thread: Re: findutils-4.3.6 build feedback
Index(es):
- Date
- Thread