** Changed in: lua-lpeg (Debian)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
This bug was fixed in the package lua-lpeg - 1.0.0-2ubuntu0.19.04.1
---
lua-lpeg (1.0.0-2ubuntu0.19.04.1) disco; urgency=medium
* d/p/stop-hascaptures-recursion.patch: Fix infinite recursion in
hascaptures() (LP: #1580385)
-- Victor Tapia Wed, 02 Oct 2019 17:49:19
+0200
**
This bug was fixed in the package lua-lpeg - 1.0.0-2ubuntu0.18.04.1
---
lua-lpeg (1.0.0-2ubuntu0.18.04.1) bionic; urgency=medium
* d/p/stop-hascaptures-recursion.patch: Fix infinite recursion in
hascaptures() (LP: #1580385)
-- Victor Tapia Wed, 02 Oct 2019 17:49:19
+0200
This bug was fixed in the package lua-lpeg - 0.12.2-1ubuntu1
---
lua-lpeg (0.12.2-1ubuntu1) xenial; urgency=medium
* d/p/stop-hascaptures-recursion.patch: Fix infinite recursion in
hascaptures() (LP: #1580385)
-- Victor Tapia Wed, 02 Oct 2019 17:49:19
+0200
--
You
This bug was fixed in the package lua-lpeg - 1.0.0-2ubuntu0.19.10.1
---
lua-lpeg (1.0.0-2ubuntu0.19.10.1) eoan; urgency=medium
* d/p/stop-hascaptures-recursion.patch: Fix infinite recursion in
hascaptures() (LP: #1580385)
-- Victor Tapia Wed, 02 Oct 2019 17:49:19
+0200
**
** Bug watch removed: Debian Bug tracker #944360
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944360
** Bug watch removed: github.com/nmap/nmap/issues #237
https://github.com/nmap/nmap/issues/237
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
#VERIFICATION EOAN
Running the following script:
$ cat repro.lua
#!/usr/bin/env lua
lpeg = require "lpeg"
p = lpeg.C(-lpeg.P{lpeg.P'x' * lpeg.V(1) + lpeg.P'y'})
p:match("xx")
- With the current version:
$ dpkg -l|grep lua-lpeg
ii lua-lpeg:amd64 1.0.0-2
#VERIFICATION XENIAL
Running the following script:
$ cat repro.lua
#!/usr/bin/env lua
lpeg = require "lpeg"
p = lpeg.C(-lpeg.P{lpeg.P'x' * lpeg.V(1) + lpeg.P'y'})
p:match("xx")
- With the current version:
$ dpkg -l | grep lua-lpeg
ii lua-lpeg:amd64 0.12.2-1
#VERIFICATION BIONIC
Running the following script:
$ cat repro.lua
#!/usr/bin/env lua
lpeg = require "lpeg"
p = lpeg.C(-lpeg.P{lpeg.P'x' * lpeg.V(1) + lpeg.P'y'})
p:match("xx")
- With the current version:
$ dpkg -l|grep lua-lpeg
ii lua-lpeg:amd64 1.0.0-2
#VERIFICATION DISCO
Running the following script:
$ cat repro.lua
#!/usr/bin/env lua
lpeg = require "lpeg"
p = lpeg.C(-lpeg.P{lpeg.P'x' * lpeg.V(1) + lpeg.P'y'})
p:match("xx")
- With the current version:
$ dpkg -l|grep lua-lpeg
ii lua-lpeg:amd64 1.0.0-2
Also, a small note: in the future I would appreciate a bit more analysis
regarding regression potential. It's good to know the overall assessment
(like, "low") and the nature of the fix, but for the future it's also
good to write down any possible areas where we could anticipate
regressions caused
Hello errors.ubuntu.com, or anyone else affected,
Accepted lua-lpeg into disco-proposed. The package will build now and be
available at https://launchpad.net/ubuntu/+source/lua-
lpeg/1.0.0-2ubuntu0.19.04.1 in a few hours, and then in the -proposed
repository.
Please help us by testing this new
Hello errors.ubuntu.com, or anyone else affected,
Accepted lua-lpeg into eoan-proposed. The package will build now and be
available at https://launchpad.net/ubuntu/+source/lua-
lpeg/1.0.0-2ubuntu0.19.10.1 in a few hours, and then in the -proposed
repository.
Please help us by testing this new
I also reported a LP bug about the lua-lpeg modernisation:
LP:
https://bugs.launchpad.net/debian/+source/lua-lpeg/+bug/1851854
Debian:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944360
- Eric
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
[sts-sponsor]
Sponsored for E, D, B & X. Packages are now waiting in their respectives
upload queues for approval in order to start building in -proposed for
the testing phase of the SRU.
Thanks again Victor
- Eric
--
You received this bug notification because you are a member of Ubuntu
Bugs,
Another note on the focal package of lua-lpeg ... (and this also implies
to debian) the src package still uses v7 debhelper compat version which
is 11 years old and obviously deprecated nowadays.
I have reported a bug against lua-lpeg debian as follows:
** Changed in: lua-lpeg (Ubuntu Eoan)
Assignee: (unassigned) => Victor Tapia (vtapia)
** Changed in: lua-lpeg (Ubuntu Disco)
Assignee: (unassigned) => Victor Tapia (vtapia)
** Changed in: lua-lpeg (Ubuntu Bionic)
Assignee: (unassigned) => Victor Tapia (vtapia)
** Changed in:
** Patch added: "xenial.debdiff"
https://bugs.launchpad.net/ubuntu/+source/lua-lpeg/+bug/1580385/+attachment/5303500/+files/xenial.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
** Patch added: "bionic.debdiff"
https://bugs.launchpad.net/ubuntu/+source/lua-lpeg/+bug/1580385/+attachment/5303499/+files/bionic.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
** Patch added: "eoan.debdiff"
https://bugs.launchpad.net/ubuntu/+source/lua-lpeg/+bug/1580385/+attachment/5303496/+files/eoan.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
** Patch added: "disco.debdiff"
https://bugs.launchpad.net/ubuntu/+source/lua-lpeg/+bug/1580385/+attachment/5303497/+files/disco.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
This bug was fixed in the package lua-lpeg - 1.0.0-2ubuntu1
---
lua-lpeg (1.0.0-2ubuntu1) focal; urgency=medium
* d/p/stop-hascaptures-recursion.patch: Fix infinite recursion in
hascaptures(). (LP: #1580385)
-- Victor Tapia Wed, 02 Oct 2019 17:49:19
+0200
** Changed in:
** Changed in: lua-lpeg (Ubuntu)
Status: In Progress => Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
[sts-sponsor]
Sponsored in focal.
# Nitpick:
I have appended the changelog to add the LP bug.
# Upstream project have no vcs, therefore no commit available. Upstream
just release tarballs.
# No merge/sync needed. Debian and Ubuntu package are already at same
version level.
# Since this is
** Changed in: lua-lpeg (Ubuntu)
Importance: Undecided => Critical
** Changed in: lua-lpeg (Ubuntu)
Importance: Critical => Medium
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
** Changed in: lua-lpeg (Debian)
Status: Unknown => New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
The attachment "focal.debdiff" seems to be a debdiff. The ubuntu-
sponsors team has been subscribed to the bug report so that they can
review and hopefully sponsor the debdiff. If the attachment isn't a
patch, please remove the "patch" flag from the attachment, remove the
"patch" tag, and if you
** Changed in: lua-lpeg (Ubuntu)
Assignee: (unassigned) => Victor Tapia (vtapia)
** Changed in: lua-lpeg (Ubuntu)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Bug watch added: Debian Bug tracker #942031
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942031
** Also affects: lua-lpeg (Debian) via
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942031
Importance: Unknown
Status: Unknown
--
You received this bug notification
** Patch added: "focal.debdiff"
https://bugs.launchpad.net/ubuntu/+source/lua-lpeg/+bug/1580385/+attachment/5303261/+files/focal.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
** No longer affects: nmap (Ubuntu)
** No longer affects: nmap (Ubuntu Xenial)
** Also affects: lua-lpeg (Ubuntu Eoan)
Importance: Undecided
Status: New
** Also affects: lua-lpeg (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: lua-lpeg (Ubuntu Focal)
** Description changed:
+ [Impact]
+
+ Under certain conditions, lpeg will crash while walking the pattern tree
+ looking for TCapture nodes.
+
+ [Test Case]
+
+ The reproducer, taken from an upstream discussion (link in "Other
+ info"), is:
+
+ $ cat repro.lua
+ #!/usr/bin/env lua
+ lpeg =
** Also affects: lua-lpeg (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
I've been able to finish the analysis of the bug, this is the summary:
- nmap includes an old version of lpeg (0.12 ~Trusty/oldoldstable) in all
releases (all files merged in lpeg.c)
- Debian introduced a patch that links nmap's build against an external
lua-lpeg lib because lpeg is properly
# REPRODUCER: Install LXD, make it available over the network and run
nmap against its ip:
# lxd init
Do you want to configure a new storage pool (yes/no) [default=yes]? no
Would you like LXD to be available over the network (yes/no) [default=no]? yes
Address to bind LXD to (not including port)
** No longer affects: nmap (Ubuntu Eoan)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
/usr/bin/nmap:11:hascaptures:hascaptures:hascaptures:hascaptures:hascaptures
To manage
** Also affects: nmap (Ubuntu Eoan)
Importance: High
Status: Confirmed
** Changed in: nmap (Ubuntu Eoan)
Assignee: (unassigned) => Victor Tapia (vtapia)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
I think I found the root cause of this issue. 0003-Link-against-lua-
lpeg.patch tries to fix a linking error related to the function named
luaopen_lpeg(), making nmap use the luaopen_lpeg() in lua-lpeg instead
of the local function declared in lpeg.c (which are slightly different).
The original
** Changed in: nmap (Ubuntu Xenial)
Assignee: Dan Streetman (ddstreet) => Victor Tapia (vtapia)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
The packaging changes between xenial and bionic don't seem to involve
lua-lpeg, and notably the patch 0003-Link-against-lua-lpeg.patch is
included in both (the patch is refreshed for lua5.3 in bionic, so the
patch isn't identical).
The diff of CHANGELOG between 7.01 and 7.60 doesn't indicate a
I confirmed that xenial nmap still segfaults when the bionic version of
lua-lpeg, so it looks like some commit in nmap between xenial and bionic
fixes this, not any change in lua-lpeg.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
While the lua-lpeg code's careless use of recursion is certainly not
good, I'm not sure if it is causing the current problem; I suspect it
may be nmap introducting a problem in the tree that causes the infinite
recursion. I've applied almost all the patches to bring lua_lpeg up to
the bionic
The backtrace start (taken from a patched lua_lpeg, so line numbers
won't match with latest released version):
(gdb) bt -40
#523468 0x76e4026c in hascaptures (tree=0xd1f57c, tree@entry=0xd1f58c)
at lpcode.c:144
#523469 0x76e4026c in hascaptures (tree=tree@entry=0xd1f584) at
It has been brought to my attention that 'nmap -sV' randomly segfault in Xenial.
I was also able to reproduce the situation.
It seems to be caused by a stack exhaustion due to a hascaptures() being
called over and over.
GNU gdb (Ubuntu 7.11.1-0ubuntu1~16.5) 7.11.1
Copyright (C) 2016 Free
It really seems to be a problem inside lua-lpeg (0.12.2-1) found in
Xenial, and seemed to have been fix (reading the upstream bug) in 1.0.0
found in Bionic and late.
Which also explain why when tried with Bionic the issue was not
reproducible.
# rmadison
lua-lpeg | 0.12.2-1 | xenial
It has been brought to my attention that 'nmap -sV' randomly segfault in Xenial.
I was also able to reproduce the situation.
It seems to be caused by a stack exhaustion due to a hascaptures() being
called over and over.
# gdb /usr/bin/nmap core.cic-1.domain.tld.1565764146.nmap.17917
GNU gdb
** Changed in: nmap (Ubuntu)
Importance: Undecided => High
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: nmap (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1580385
Title:
48 matches
Mail list logo
