On Wed, May 23, 2018 at 12:55 PM Chet Ramey wrote:
>
> The first alpha release of bash-5.0 is now available with the URL
>
> ftp://ftp.cwru.edu/pub/bash/bash-5.0-alpha.tar.gz
>
> and from the bash-5.0-testing branch in the bash git repository
>
On Sat, Sep 15, 2018 at 8:15 PM Chet Ramey wrote:
(...)
> Thanks for the report. They are the same problem.
Thanks Chet. Do you have a patch for the issue? I have a few other
cases but I'm not sure if they're all due to the same cause.
Here's another interesting crash:
$ base64 < 53
MBgFEBAQMBgFEBAfEA==
$ gdb -batch -ex=r -ex=bt --args ./bash --noprofile --norc -c 'PATH=; set -o
emacs; IFS= read -re' < 53
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
0
On 9/16/18 4:12 AM, Eduardo A. Bustamante López wrote:
> Here's another interesting crash:
>
> $ base64 < 53
> MBgFEBAQMBgFEBAfEA==
>
> $ gdb -batch -ex=r -ex=bt --args ./bash --noprofile --norc -c 'PATH=; set -o
> emacs; IFS= read -re' < 53
I can't reproduce this on Mac OS X or Fedora 28.
--
On 9/16/18 3:00 AM, Eduardo Bustamante wrote:
> Out of curiosity, when / how will bash 5.x become a stable release?
>
> The main reason I ask is that I'd like to ensure that there's
> reasonable fuzzing coverage of the parser, readline and other
> easy-to-fuzz areas of bash before that happens.
On 9/16/18 2:55 AM, Eduardo Bustamante wrote:
> On Sat, Sep 15, 2018 at 8:15 PM Chet Ramey wrote:
> (...)
>> Thanks for the report. They are the same problem.
>
> Thanks Chet. Do you have a patch for the issue? I have a few other
> cases but I'm not sure if they're all due to the same cause.
On Sun, Sep 16, 2018 at 02:39:07PM -0400, Chet Ramey wrote:
> On 9/16/18 4:12 AM, Eduardo A. Bustamante López wrote:
> > Here's another interesting crash:
> >
> > $ base64 < 53
> > MBgFEBAQMBgFEBAfEA==
> >
> > $ gdb -batch -ex=r -ex=bt --args ./bash --noprofile --norc -c 'PATH=; set
> > -o
On Sun, Sep 16, 2018 at 12:42:28PM -0400, Chet Ramey wrote:
(...)
> Bash-5.0 is about to go into beta test.
Interesting. Thanks.
> (...) While fuzzing has some
> interesting results, I haven't really seen any security problems or
> any serious bug that would cause me to hold up a release from
On 9/16/18 5:15 PM, Eduardo A. Bustamante López wrote:
> On Sun, Sep 16, 2018 at 02:39:07PM -0400, Chet Ramey wrote:
>> On 9/16/18 4:12 AM, Eduardo A. Bustamante López wrote:
>>> Here's another interesting crash:
>>>
>>> $ base64 < 53
>>> MBgFEBAQMBgFEBAfEA==
>>>
>>> $ gdb -batch -ex=r -ex=bt
On 9/16/18 5:22 PM, Eduardo A. Bustamante López wrote:
> I do think there are still bugs around readline and I'm hoping to concentrate
> my
> efforts there. It'd be nice to get rid of the multibyte character handling
> edge
> cases and other oddities before the release. Although I'm not asking
10 matches
Mail list logo