Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

tags 918339 + fixed-upstream thanks Hello, IMVHO, this must be RC (serious), dovecot cannot be released in buster like this, even if this has no security implication, on my machine the process is crashing every time a client check if there are new mails. Could you raise the severity again?

Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

I have the same issue. I think that this bug could be similar to another bug discussed in http://dovecot.2317879.n4.nabble.com/auth-worker-Error-double-free-or-corruption-fasttop-td66230.html and was fixed by https://github.com/dovecot/core/commit/3c5101ffdd2a8115e03ed7180d53578765dea4c9.patch

Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

Hello, I'm encountering a similar issue. Jan 24 16:08:54 mx0 dovecot: auth-worker: Fatal: master: service(auth-worker): child 1339 killed with signal 11 (core dumps disabled - https://dovecot.org/bugreport.html#coredumps) Jan 24 16:08:54 mx0 kernel: [587338.983050] traps: auth[1339] general

Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

Hi Bernhard, Apollon, > They should be available in a different debug symbol > repository described in [1]. Thanks, I installed the debug symbols for libmariadb18 and dovecot-mysql. And I got a one or two more symbols: #0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:50

Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

Control: severity -1 important Hi and thanks for the report! On 11:00 Sat 05 Jan , Dominik Röttsches wrote: > Package: dovecot-mysql > Version: 1:2.3.4-2 > Severity: grave > Tags: security > Justification: user security hole Downgrading severity to important; although this is a double-free

Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

Hello Dominik Röttsches, the missing debug symbols for libmariadbclient.so.18 might hide in libmariadb3-dbgsym. You may also want to install these packages too: dovecot-core-dbgsym dovecot-mysql-dbgsym They should be available in a different debug symbol repository described in [1]. I had a

Bug#918339: dovecot-mysql: dovecot/auth segfaults with double-free in mysql_close() / passdb_deinit()

Package: dovecot-mysql Version: 1:2.3.4-2 Severity: grave Tags: security Justification: user security hole Dear Maintainer, while running dovecot with the mysql auth package, I frequently get auth segfaults in the kernel log such as: [51013.656961] auth[17706]: segfault at 60 ip