Your message dated Tue, 20 Jan 2015 21:18:53 +0000 with message-id <[email protected]> and subject line Bug#775540: fixed in patch 2.7.1-7 has caused the Debian Bug report #775540, regarding Infinite loop while applying patch to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 775540: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775540 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: patch The attached files seem to be getting patch into an infinite loop condition (or taking way too much time to run) patch util.h -i loop.patch I don't think this log is very useful but I ran it and paused it twice to check backtrace : user@user-box:~/patch/patch-2.7.1/src$ gdb ./patch .. (gdb) run /home/user/Desktop/loop/util.h -i /home/user/Desktop/loop/loop.patch Starting program: /home/user/patch/patch-2.7.1/src/patch /home/user/Desktop/loop/util.h -i /home/user/Desktop/loop/loop.patch patching file /home/user/Desktop/loop/util.h <it keeps running for a while> ^C Program received signal SIGINT, Interrupt. 0x0805b0bd in patch_match (base=12884901888, offset=-409342277, prefix_fuzz=99999723552768, suffix_fuzz=0) at patch.c:1667 1667 } (gdb) bt #0 0x0805b0bd in patch_match (base=12884901888, offset=-409342277, prefix_fuzz=99999723552768, suffix_fuzz=0) at patch.c:1667 #1 0x0805ba9d in locate_hunk (fuzz=<optimized out>) at patch.c:1170 #2 0x0804c6f1 in main (argc=4, argv=0xbffff064) at patch.c:402 #3 0xb7e2da83 in __libc_start_main (main=0x8049f60 <main>, argc=4, argv=0xbffff064, init=0x80c12a0 <__libc_csu_init>, fini=0x80c1310 <__libc_csu_fini>, rtld_fini=0xb7fed130 <_dl_fini>, stack_end=0xbffff05c) at libc-start.c:287 #4 0x08053431 in _start () (gdb) c Continuing. ^C Program received signal SIGINT, Interrupt. 0x08056159 in ifetch (line=-4611707424544391168, whichbuf=<optimized out>, psize=0xff88358f) at inp.c:453 453 *psize = 0; (gdb) bt #0 0x08056159 in ifetch (line=-4611707424544391168, whichbuf=<optimized out>, psize=0xff88358f) at inp.c:453 #1 0x00000003 in ?? () (gdb) I came across this one using lcamtuf's afl fuzzer.
loop.tar.gz
Description: GNU Zip compressed data
--- End Message ---
--- Begin Message ---Source: patch Source-Version: 2.7.1-7 We believe that the bug you reported is fixed in the latest version of patch, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Laszlo Boszormenyi (GCS) <[email protected]> (supplier of updated patch package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 20 Jan 2015 19:34:19 +0000 Source: patch Binary: patch Architecture: source amd64 Version: 2.7.1-7 Distribution: unstable Urgency: high Maintainer: Laszlo Boszormenyi (GCS) <[email protected]> Changed-By: Laszlo Boszormenyi (GCS) <[email protected]> Description: patch - Apply a diff file to an original Closes: 775227 775540 775793 Changes: patch (2.7.1-7) unstable; urgency=high . * Backport patches from upstream Git tree: - fix CVE-2015-119: directory traversal via symlinks (closes: #775227), - infinite loop while applying patch (closes: #775540), - segmentation fault while applying corrupted patch (closes: #775793). Checksums-Sha1: 3ccd6e6153fe56cd6c8d8d9da65ac0f7b8364b96 1751 patch_2.7.1-7.dsc bbd77e7fdebd12348c9f91ee89946bbddd2756be 12448 patch_2.7.1-7.debian.tar.xz 6947302639febb8e6ccc241a8cf96f969830ee89 97324 patch_2.7.1-7_amd64.deb Checksums-Sha256: 390dd7f91f6a1490fe20a5f773fd93e906648ca267dca82e42541e36a9bab417 1751 patch_2.7.1-7.dsc f644d8fc6b0e7d3a92fd51ea631f1454645192380f126a96ca89aa6f359a03de 12448 patch_2.7.1-7.debian.tar.xz 0183b9f43e9912d177d81ecc094150d12a825d9cd927f0554df9683c39273626 97324 patch_2.7.1-7_amd64.deb Files: fb67b05e757cfefacaacb4cc17f8c786 1751 vcs standard patch_2.7.1-7.dsc c1390b649f17fc4f4542fac704a49a01 12448 vcs standard patch_2.7.1-7.debian.tar.xz a4912dd0292de7c728200dc05061cd53 97324 vcs standard patch_2.7.1-7_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJUvreBAAoJENzjEOeGTMi/R/wQAKSsnV4e3FhqU44a+UoHWqFI +gosEDHdiywFMRGXhzBnFFk1RglGQRZzL1zUAHEKPwjNsJlG/H/938mB27ENeCz5 QhKhLH4DuOdHkO/6MRKKGrq2KkyyiDckUgiI9huc/6kGy2LeHBDgYDK4XkXWku6c fqtPxUbJJhr6F0iK39dnmmbs2m7+zlR8HovC8mh8MjXMKe9n9OlCEg0fW8XBFxQ8 rO+1cFi1omrpo9H+S9cJyui9r6SwNaYIAid4+nHYGyfEb7bHwgS3pXUl5+PR0WLx M51iyvMRhvPQbG46Dfw38qq3je25G+Yh/ZP/LAMFqRuXSps4klkW64HPdwj6xG56 pTiHdW9XaGMQgZDr4Wh/oRlCI2Sv0+oWPaN7WwCdpuKJDXNK4LmfRDo1wCo2XmUl bbOhOlNFqFkiPGvUkHasZVkXYvXIsksF0jEXfaOP1DBnDnWvzl4TOF42zBc/UQN/ T+CraOqcIpc/d1Vo3LiN6RiGE5PEDn0KVqtStqBN0WCvzXQxRXgBShC0B+uR+eR8 oz4CNjd3IFrds2gYsbHwyXNdu2BaSvgNXagKjn1dOwIpVYH2kF2ALq54xZyu4Rgo EkubGqKUqMcFynGp1Ug+bj5GtLZVY4JZlpAkw0lqQR53UIxAW7YBlVucL8BxS7/7 l8aLL1krXbpOG6wJS7R0 =Azom -----END PGP SIGNATURE-----
--- End Message ---
