[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
This bug was fixed in the package rsync - 3.2.7-1ubuntu1 --- rsync (3.2.7-1ubuntu1) noble; urgency=medium * add d/p/fix_crashes_with_fortified_strlcpy.patch (LP: #2060967) - Fixes a buffer overflow when using -F flag. -- Mitchell Dzurick Fri, 12 Apr 2024 10:09:41 -0700 ** Changed in: rsync (Ubuntu) Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: Fix Released Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
Package is in proposed now. Testing in an LXC container shows a fix of this behavior. $ lxc launch ubuntu-daily:noble n $ lxc shell n # dpkg -s rsync | grep Version: Version: 3.2.7-1build2 # rsync -F --delete-after --archive /etc/os-release /tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] # cat
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
I'm surprised this wasn't caught by the DEP8 tests. Care to also perhaps add a simple smoke test, like (note it's not using ssh or any network): $ rsync -F --delete-after --archive /etc/os-release /tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (34 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] ** Changed in: rsync (Ubuntu) Importance: Undecided => High ** Changed in: rsync (Ubuntu) Importance: High => Critical -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: In Progress Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
The debian patch looks promising in my local testing. I uploaded a test package to run dep8 tests against. If those look green I'll submit my MP and get it in ASAP. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: In Progress Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
** Changed in: rsync (Ubuntu) Assignee: (unassigned) => Mitchell Dzurick (mitchdz) ** Changed in: rsync (Ubuntu) Status: Triaged => In Progress -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: In Progress Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
** Merge proposal linked: https://code.launchpad.net/~mitchdz/ubuntu/+source/rsync/+git/rsync/+merge/464218 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: In Progress Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
This looks like it could already be fixed in debian with https://salsa.debian.org/debian/rsync/-/commit/d3a0eccf989175b096c10b6c42b02b1ee1306a00 I'll try an ubuntu build with this patch and report back. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: Triaged Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
** Also affects: rsync (Ubuntu Focal) Importance: Undecided Status: New ** Also affects: rsync (Ubuntu Jammy) Importance: Undecided Status: New ** Also affects: rsync (Ubuntu Mantic) Importance: Undecided Status: New ** Changed in: rsync (Ubuntu Focal) Status: New => Invalid ** Changed in: rsync (Ubuntu Jammy) Status: New => Invalid ** Changed in: rsync (Ubuntu Mantic) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: Triaged Status in rsync source package in Focal: Invalid Status in rsync source package in Jammy: Invalid Status in rsync source package in Mantic: Invalid Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
I was able to reproduce this in a noble LXD container. $ lxc launch ubuntu-daily:noble n $ lxc shell n # ssh-keygen -t rsa # cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys # touch testfile.txt # rsync -F --delete-after --archive /root/testfile.txt 127.0.0.1:/tmp/ The authenticity of host '127.0.0.1 (127.0.0.1)' can't be established. ED25519 key fingerprint is SHA256:1w9TL8K1uwpKXpyd9rFuNQPQNJ5EolG3NGNbdkUl9VE. This key is not known by any other names. Are you sure you want to continue connecting (yes/no/[fingerprint])? yes Warning: Permanently added '127.0.0.1' (ED25519) to the list of known hosts. *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (34 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: Triaged Status in rsync source package in Focal: New Status in rsync source package in Jammy: New Status in rsync source package in Mantic: New Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
Quickly testing Jammy/Mantic in a similar fashion as above I do not see the buffer overflow. ** Changed in: rsync (Ubuntu) Status: Confirmed => Triaged -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: Triaged Status in rsync source package in Focal: New Status in rsync source package in Jammy: New Status in rsync source package in Mantic: New Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 2060967] Re: noble/rsync buffer overflow detected
Status changed to 'Confirmed' because the bug affects multiple users. ** Changed in: rsync (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to rsync in Ubuntu. https://bugs.launchpad.net/bugs/2060967 Title: noble/rsync buffer overflow detected Status in rsync package in Ubuntu: Confirmed Bug description: Hi, running the following test case in a current (today/2024-04-11) Noble install leads to a "buffer overflow detected": $ rsync -F --delete-after --archive /etc/fstab 127.0.0.1:/tmp/ *** buffer overflow detected ***: terminated rsync: connection unexpectedly closed (11 bytes received so far) [sender] rsync error: error in rsync protocol data stream (code 12) at io.c(231) [sender=3.2.7] Original use case for the above striped down rsync options is the ansible module "synchronize". ProblemType: Bug ApportVersion: 2.28.0-0ubuntu1 Architecture: amd64 CasperMD5CheckResult: unknown Date: Thu Apr 11 14:38:46 2024 Dependencies: gcc-14-base 14-20240330-1ubuntu2 init-system-helpers 1.66ubuntu1 libacl1 2.3.2-1 libc6 2.39-0ubuntu8 libgcc-s1 14-20240330-1ubuntu2 libidn2-0 2.3.7-2 liblz4-1 1.9.4-1 libpopt0 1.19+dfsg-1 libunistring5 1.1-2 libxxhash0 0.8.2-2 libzstd1 1.5.5+dfsg2-2 lsb-base 11.6 sysvinit-utils 3.08-6ubuntu2 zlib1g 1:1.3.dfsg-3.1ubuntu2 DistroRelease: Ubuntu 24.04 Package: rsync 3.2.7-1build2 PackageArchitecture: amd64 ProcCpuinfoMinimal: processor: 0 vendor_id: GenuineIntel cpu family : 6 model: 60 model name : Intel Core Processor (Haswell, no TSX, IBRS) stepping : 1 microcode: 0x1 cpu MHz : 2397.222 cache size : 16384 KB physical id : 0 siblings : 1 core id : 0 cpu cores: 1 apicid : 0 initial apicid : 0 fpu : yes fpu_exception: yes cpuid level : 13 wp : yes flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology cpuid tsc_known_freq pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm cpuid_fault pti ssbd ibrs ibpb fsgsbase bmi1 avx2 smep bmi2 erms invpcid xsaveopt arat md_clear bugs : cpu_meltdown spectre_v1 spectre_v2 spec_store_bypass l1tf mds swapgs itlb_multihit srbds mmio_unknown bogomips : 4794.44 clflush size : 64 cache_alignment : 64 address sizes: 40 bits physical, 48 bits virtual power management: ProcEnviron: LANG=en_US.UTF-8 PATH=(custom, no user) SHELL=/bin/bash TERM=xterm-256color XDG_RUNTIME_DIR= ProcVersionSignature: Ubuntu 6.8.0-22.22-generic 6.8.1 SourcePackage: rsync Tags: noble Uname: Linux 6.8.0-22-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) _MarkForUpload: True To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/2060967/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
