Bug#657527: marked as done (buffer overflow detected in pstree command)

Thu, 26 Jan 2012 14:21:21 -0800 

Your message dated Thu, 26 Jan 2012 22:18:05 +0000
with message-id <[email protected]>
and subject line Bug#657527: fixed in psmisc 22.15-2
has caused the Debian Bug report #657527,
regarding buffer overflow detected in pstree command
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
657527: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657527
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: psmisc
Version: 22.15-1
Severity: important

After upgrade to this version I see:

root@ntm:~# pstree 
*** buffer overflow detected ***: ./pstree terminated
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x37)[0x7f317e479c17]
/lib/x86_64-linux-gnu/libc.so.6(+0xe8ad0)[0x7f317e478ad0]
./pstree[0x402f92]
./pstree[0x4030ca]
./pstree[0x401f8d]
/lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xfd)[0x7f317e3aeead]
./pstree[0x402195]
======= Memory map: ========
00400000-00405000 r-xp 00000000 08:01 25196423                           
/root/pstree
00604000-00605000 r--p 00004000 08:01 25196423                           
/root/pstree
00605000-00606000 rw-p 00005000 08:01 25196423                           
/root/pstree
00a03000-00a24000 rw-p 00000000 00:00 0                                  [heap]
7f317e17a000-7f317e18f000 r-xp 00000000 08:01 55296                      
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f317e18f000-7f317e38f000 ---p 00015000 08:01 55296                      
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f317e38f000-7f317e390000 rw-p 00015000 08:01 55296                      
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f317e390000-7f317e50a000 r-xp 00000000 08:01 62016                      
/lib/x86_64-linux-gnu/libc-2.13.so
7f317e50a000-7f317e70a000 ---p 0017a000 08:01 62016                      
/lib/x86_64-linux-gnu/libc-2.13.so
7f317e70a000-7f317e70e000 r--p 0017a000 08:01 62016                      
/lib/x86_64-linux-gnu/libc-2.13.so
7f317e70e000-7f317e70f000 rw-p 0017e000 08:01 62016                      
/lib/x86_64-linux-gnu/libc-2.13.so
7f317e70f000-7f317e714000 rw-p 00000000 00:00 0 
7f317e714000-7f317e737000 r-xp 00000000 08:01 340                        
/lib/x86_64-linux-gnu/libtinfo.so.5.9
7f317e737000-7f317e937000 ---p 00023000 08:01 340                        
/lib/x86_64-linux-gnu/libtinfo.so.5.9
7f317e937000-7f317e93b000 r--p 00023000 08:01 340                        
/lib/x86_64-linux-gnu/libtinfo.so.5.9
7f317e93b000-7f317e93c000 rw-p 00027000 08:01 340                        
/lib/x86_64-linux-gnu/libtinfo.so.5.9
7f317e93c000-7f317e95b000 r-xp 00000000 08:01 62038                      
/lib/x86_64-linux-gnu/ld-2.13.so
7f317e9c4000-7f317eb3b000 r--p 00000000 08:02 33554702                   
/usr/lib/locale/locale-archive
7f317eb3b000-7f317eb3e000 rw-p 00000000 00:00 0 
7f317eb51000-7f317eb58000 r--s 00000000 08:02 101683019                  
/usr/lib/x86_64-linux-gnu/gconv/gconv-modules.cache
7f317eb58000-7f317eb5b000 rw-p 00000000 00:00 0 
7f317eb5b000-7f317eb5c000 r--p 0001f000 08:01 62038                      
/lib/x86_64-linux-gnu/ld-2.13.so
7f317eb5c000-7f317eb5d000 rw-p 00020000 08:01 62038                      
/lib/x86_64-linux-gnu/ld-2.13.so
7f317eb5d000-7f317eb5e000 rw-p 00000000 00:00 0 
7fffe95bb000-7fffe95dc000 rw-p 00000000 00:00 0                          [stack]
7fffe95e5000-7fffe95e6000 r-xp 00000000 00:00 0                          [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0                  
[vsyscall]
Aborted
root@ntm:~#

This problem affects gdm3 too which doesn't start. (I don't know why).
Downgrade to previous version of psmisc package solved problems.

Debian unstable, tested kernels: 3.2.2, 3.2.1, 2.6.39.4 (selfcompiled)
Tested archs: amd64, i386

Best regards,

-- 
Milan Kocian

--- End Message ---
--- Begin Message --- 
Source: psmisc
Source-Version: 22.15-2

We believe that the bug you reported is fixed in the latest version of
psmisc, which is due to be installed in the Debian FTP archive:

psmisc_22.15-2.debian.tar.gz
  to main/p/psmisc/psmisc_22.15-2.debian.tar.gz
psmisc_22.15-2.dsc
  to main/p/psmisc/psmisc_22.15-2.dsc
psmisc_22.15-2_amd64.deb
  to main/p/psmisc/psmisc_22.15-2_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Craig Small <[email protected]> (supplier of updated psmisc package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 27 Jan 2012 08:53:36 +1100
Source: psmisc
Binary: psmisc
Architecture: source amd64
Version: 22.15-2
Distribution: unstable
Urgency: low
Maintainer: Craig Small <[email protected]>
Changed-By: Craig Small <[email protected]>
Description: 
 psmisc     - utilities that use the proc file system
Closes: 657527
Changes: 
 psmisc (22.15-2) unstable; urgency=low
 .
   * Removed strcpy buffer overflow in pstree Closes: #657527
Checksums-Sha1: 
 9cabe0956762b901c0511a4a4ba8e691f97082c4 1669 psmisc_22.15-2.dsc
 64f0f5245f9040481b34aef6e5e037c107ea7bcb 6887 psmisc_22.15-2.debian.tar.gz
 595030dded0a722d0c8c41f662622c7047bca3ea 122342 psmisc_22.15-2_amd64.deb
Checksums-Sha256: 
 83fee5879cf78d30e6fd24fbc014c8b09cbc287cd78abda20ceba4efc775b809 1669 
psmisc_22.15-2.dsc
 bfe6f918e89c23ab9a93085a2478277ae291d3fc3b01470b45dfe510762c34cb 6887 
psmisc_22.15-2.debian.tar.gz
 41a892bcdf4a45e4eeabd57435154bde0a6b378ea4140bddc2b16eb5b9d23637 122342 
psmisc_22.15-2_amd64.deb
Files: 
 461248ba0c07fbe2d8ce7e4dca315cb1 1669 admin optional psmisc_22.15-2.dsc
 7911117da314649300ac4b8e90193830 6887 admin optional 
psmisc_22.15-2.debian.tar.gz
 be1c562f21e8322c2de572dab49aa7f4 122342 admin optional psmisc_22.15-2_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAEBCAAGBQJPIc8QAAoJEDk4+WvfUP6lzsgP/0mWR7mjYTehIIc8t6WJzbnW
IGHj2+w6UxV+JM025sF40oPdp1efoxiqTgAHdbwBv4Yapvads/DsMvjoIvqDJ/CT
F3Viyd3GLLvFxOSDNdWIrW1OlT2AQ8wVIASHAyaMTCXS1n+63+SidEHdP4QvGPQR
aF+7xw3/XDeFIyy72QPx/lY08bQjjn0lHXFGxkB2Pa5dNaQ8zpq/tzWjRRLWZ5GA
1nlb0NYzFbiDBn5zb+XkoHyGbWLjdnZuPUxsAvKzzwkVFqxGpHNi5fcMW1R6mg+N
6I5V9ECZiUAYjCp0Pas5WUCCr7B08fPlpm1808GwUJAizl9ePtGGBOuvb1Obu49x
x8ABogaG/3IafsIefr7dnYRreYO5bhl0VyEvtNkumwZmmzOZ6BxYGEU/LvIdjVLj
K5x4Zu+hzHpq0WRQy/dkbvNq/j76w0MrnfreC02eIp4smjmhWrD2Bd1NTO7ZjWNb
KPoYsx03YmZhq8sIgiAtF+rtc9Z+zonnyJorkwcdOmOh5CeZF1QF/EWUt3anJbE6
HUvj9JIUTBuXInDJWNlDD5lfuI7ZqArsHWpXiRPpfVJdi8vCpEBSNF89oR08Klni
y+7DmZDZeDlQRhrw+KTsIGHvOjqiwo3nUQDccSMSKvtNLuBX2t7LCXf9RnURNRaQ
A7aTGbCvb7k35EOLgkFb
=of77
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to