Bug#769937: marked as forwarded (formail: memory corruption)

Tue, 18 Nov 2014 01:57:32 -0800 

Your message dated Tue, 18 Nov 2014 10:55:13 +0100 (CET)
with message-id <[email protected]>
has caused the   report #769937,
regarding formail: memory corruption
to be marked as having been forwarded to the upstream software
author(s) [email protected]

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
769937: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769937
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Hello.

I received this report from the Debian bug system.

Since I don't usually receive replies for the bug reports I send to
this address, I'm going to Cc the author and the maintainer as well.

Thanks.

---------- Forwarded message ----------
From: Jakub Wilk <[email protected]>
To: Debian Bug Tracking System <[email protected]>
Date: Mon, 17 Nov 2014 19:47:22 +0100
Subject: Bug#769937: formail: memory corruption

Package: procmail
Version: 3.22-22
Tags: security
Usertags: afl

The attached tarball contains 3 test cases that crash formail:

$ formail < test1
*** Error in `formail': malloc(): memory corruption: 0x0933c018 ***
Aborted

$ formail < test2
*** Error in `formail': free(): invalid next size (fast): 0x08a321b0 ***
Aborted

$ formail < test3
formail: malloc.c:2372: sysmalloc: Assertion `(old_top == (((mbinptr) (((char *)
&((av)->bins[((1) - 1) * 2])) - __builtin_offsetof (struct malloc_chunk, fd))))
&& old_size == 0) || ((unsigned long) (old_size) >= (unsigned
long)((((__builtin_offsetof (struct malloc_chunk, fd_nextsize))+((2
*(sizeof(size_t))) - 1)) & ~((2 *(sizeof(size_t))) - 1))) && ((old_top)->size &
0x1) && ((unsigned long) old_end & pagemask) == 0)' failed.
Aborted


This bug was brought to you by American fuzzy lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (990, 'unstable'), (500, 'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages procmail depends on:
ii  libc6  2.19-13

Versions of packages procmail recommends:
ii  esmtp-run [mail-transport-agent]  1.2-12
ii  fetchmail                         6.3.26-1+b1

--
Jakub Wilk

Attachment: procmail-test.tar.gz
Description: application/gzip


--- End Message ---

Reply via email to