Your message dated Wed, 19 Oct 2016 19:20:47 +0000
with message-id <[email protected]>
and subject line Bug#840771: fixed in dumpasn1 20150808-2
has caused the Debian Bug report #840771,
regarding segfaults on valid certificate
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
840771: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840771
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: dumpasn1
Version: 20150808-1
Severity: normal
dumpasn1 segfaults on some certificates when printing Unicode strings.
E.g. you can try it with the certificate downloaded from
http://www.grfc.ru/upload/medialibrary/eec/016301.p7b
Valgrind backtrace:
144 58: SET {
146 56: SEQUENCE {
148 3: OBJECT IDENTIFIER streetAddress (2 5 4 9)
153 49: UTF8String
==31111== Invalid read of size 4
==31111== at 0x4ED2D19: wcsnlen (wcsnlen.c:31)
==31111== by 0x4ED2556: wcsrtombs (wcsrtombs.c:104)
==31111== by 0x4E6D0D0: wcstombs (wcstombs.c:34)
==31111== by 0x402998: displayUnicode (dumpasn1.c:1325)
==31111== by 0x403B46: displayString (dumpasn1.c:1914)
==31111== by 0x405C58: printASN1object (dumpasn1.c:2823)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== Address 0x414 is not stack'd, malloc'd or (recently) free'd
==31111==
==31111==
==31111== Process terminating with default action of signal 11 (SIGSEGV)
==31111== Access not within mapped region at address 0x414
==31111== at 0x4ED2D19: wcsnlen (wcsnlen.c:31)
==31111== by 0x4ED2556: wcsrtombs (wcsrtombs.c:104)
==31111== by 0x4E6D0D0: wcstombs (wcstombs.c:34)
==31111== by 0x402998: displayUnicode (dumpasn1.c:1325)
==31111== by 0x403B46: displayString (dumpasn1.c:1914)
==31111== by 0x405C58: printASN1object (dumpasn1.c:2823)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== by 0x406222: printAsn1 (dumpasn1.c:2974)
==31111== by 0x404C86: printConstructed (dumpasn1.c:2475)
==31111== by 0x405264: printASN1object (dumpasn1.c:2598)
==31111== If you believe this happened as a result of a stack
==31111== overflow in your program's main thread (unlikely but
==31111== possible), you can try to increase the size of the
==31111== main thread stack using the --main-stacksize= flag.
==31111== The main thread stack size used in this run was 8388608.
--
With best wishes
Dmitry
-- System Information:
Debian Release: stretch/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.7.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=ru_RU.utf8, LC_CTYPE=ru_RU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
Versions of packages dumpasn1 depends on:
ii libc6 2.24-3
dumpasn1 recommends no packages.
dumpasn1 suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: dumpasn1
Source-Version: 20150808-2
We believe that the bug you reported is fixed in the latest version of
dumpasn1, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mathieu Malaterre <[email protected]> (supplier of updated dumpasn1 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 19 Oct 2016 20:33:47 +0200
Source: dumpasn1
Binary: dumpasn1
Architecture: source
Version: 20150808-2
Distribution: unstable
Urgency: medium
Maintainer: Mathieu Malaterre <[email protected]>
Changed-By: Mathieu Malaterre <[email protected]>
Description:
dumpasn1 - ASN.1 object dump program
Closes: 840771
Changes:
dumpasn1 (20150808-2) unstable; urgency=medium
.
* Fix segfaults on valid certificate. Closes: #840771
* Bump Std-Vers to 3.9.8, no changes needed
Checksums-Sha1:
69dcf57a52dad543f078eb9f90f17d9f6d13c763 1873 dumpasn1_20150808-2.dsc
9afb7fe434472a5f182ddfe640077b3dc92e5384 6312 dumpasn1_20150808-2.debian.tar.xz
Checksums-Sha256:
8fcb33eb275d2603e0bb4144ec043044a1746e97ec7043d3bf09b041d0aef87f 1873
dumpasn1_20150808-2.dsc
154e15d7e35d2490344bbb3e122223a79eb2b91f3f841099508b6709bb90aa03 6312
dumpasn1_20150808-2.debian.tar.xz
Files:
70a24b23a75c38fd2c95a5eb758b7c73 1873 utils optional dumpasn1_20150808-2.dsc
e7e5d28a41cb363397d21f3af275e689 6312 utils optional
dumpasn1_20150808-2.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=DHMp
-----END PGP SIGNATURE-----
--- End Message ---
