On Tue, Apr 16, 2024 at 03:40:16PM +0100, Alex Kiernan wrote:
> I have a weird failure with backtick after upgrade, with this execline
> script (we're building with multicall, if that's relevant):
>
> #!/usr/bin/execlineb -P
>
> backtick -E A_LONGISH_NAME { s6-echo foo }
On my PC, when I run backtick -E with a variable of any non-zero length,
it aborts because a buffer overflow is detected:
$ execlineb -c 'backtick -E A_LONGISH_NAME { s6-echo foo }'
*** buffer overflow detected ***: terminated
Aborted (core dumped)
$ execlineb -c 'backtick -E z { s6-echo foo }'
*** buffer overflow detected ***: terminated
Aborted (core dumped)
Running backtick with gdb reveals that the crash is caused by the
`memcpy' at line 63 of src/libexecline/el_modifs_and_exec.c
https://git.skarnet.org/cgi-bin/cgit.cgi/execline/tree/src/libexecline/el_modifs_and_exec.c#n63
o/
emanuele6
