Bug#874275: exifprobe: Consistent segmentation fault

[Hubert Figuiere]

[ I'm the upstream maintainer ]

This crash is caused by downstream patch 
https://salsa.debian.org/pkg-security-team/exifprobe/blob/debian/master/debian/patches/fix-makefile.patch


More specifically the added -fPIE compiler flag.

Hub

Bug#874275: exifprobe: Consistent segmentation fault

[Karl E. Jorgensen]

Package: exifprobe
Version: 2.0.1+git20170416.3c2b769-1
Severity: important

Dear Maintainer,

When running "exifprobe -L" I get consistent "segmentation fault". Same occurs 
without the -L option.

I grabbed the debian source, and combined with a core dump I have this 
backtrace:

Program terminated with signal SIGSEGV, Segmentation fault.
#0  strlen () at ../sysdeps/x86_64/strlen.S:106
106 ../sysdeps/x86_64/strlen.S: No such file or directory.
(gdb) bt
#0  strlen () at ../sysdeps/x86_64/strlen.S:106
#1  0x7ff6ebef9da8 in _IO_vfprintf_internal (s=s@entry=0x7ffd7d7bcdd0, 
format=, format@entry=0x55fc212e4c6d "%s%s%s", 
ap=ap@entry=0x7ffd7d7bcf48) at vfprintf.c:1637
#2  0x7ff6ebfa7aa6 in ___vsnprintf_chk (s=0x7ffd7d7bd030 "", 
maxlen=, flags=1, slen=, format=0x55fc212e4c6d 
"%s%s%s", args=args@entry=0x7ffd7d7bcf48) at vsnprintf_chk.c:63
#3  0x7ff6ebfa7a08 in ___snprintf_chk (s=s@entry=0x7ffd7d7bd030 "", 
maxlen=maxlen@entry=1024, flags=flags@entry=1, slen=slen@entry=1024, 
format=format@entry=0x55fc212e4c6d "%s%s%s") at snprintf_chk.c:34
#4  0x55fc212a3680 in snprintf (__fmt=0x55fc212e4c6d "%s%s%s", __n=1024, 
__s=0x7ffd7d7bd030 "") at /usr/include/x86_64-linux-gnu/bits/stdio2.h:64
#5  splice (string1=, string1@entry=0x22509790 , sep=, 
sep@entry=0x55fc212e1329 ".", string2=) at misc.c:1313
#6  0x55fc21299c89 in process_tiff_ifd (inptr=inptr@entry=0x55fc22507010, 
byteorder=, ifd_offset=ifd_offset@entry=8, 
fileoffset_base=fileoffset_base@entry=12, max_offset=max_offset@entry=0, 
summary_entry=summary_entry@entry=0x55fc22509660, 
parent_name=0x22509790 , 
ifdtype=0, ifdnum=0, subifdnum=-1, indent=4) at process.c:183
#7  0x55fc2129f1e8 in process_app1 (inptr=inptr@entry=0x55fc22507010, 
app1_offset=app1_offset@entry=2, tag=tag@entry=65505, 
summary_entry=summary_entry@entry=0x55fc22509660, 
parent_name=parent_name@entry=0x55fc212e4ad8 "JPEG", indent=indent@entry=2) at 
process.c:3914
#8  0x55fc212a1620 in process_jpeg_segments (inptr=0x55fc22507010, 
marker_offset=2, tag=65505, data_length=0, summary_entry=, 
parent_name=0x55fc212e4ad8 "JPEG", prefix=0x55fc212e0ca2 "@", indent=0) at 
process.c:3103
#9  0x55fc2128c9fe in main (argc=, argv=0x7ffd7d7bd848) at 
main.c:214


-- System Information:
Debian Release: buster/sid
  APT prefers oldstable-updates
  APT policy: (500, 'oldstable-updates'), (500, 'testing'), (500, 'stable'), 
(500, 'oldstable'), (300, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.11.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages exifprobe depends on:
ii  libc6  2.24-17

exifprobe recommends no packages.

exifprobe suggests no packages.

-- no debconf information

Downgrading exifprobe to version 2.0.1-11 makes exifprobe work normally again.