Public bug reported: This started up when I upgraded to Oneiric.
I'm fairly consistently finding that when using wput with --binary and --limit-rate for an ftp upload, the upload ends with a buffer overflow. A sample recent run (host, username, and password obscured): oloryn@fornost:~$ wput --binary --limit-rate=5K svnback2012-03-07.zip ftp://user name:[email protected]/svnback2012-03-07.zip --00:49:50-- `svnback2012-03-07.zip' => ftp://bhbackup:[email protected]:21/svnback2012-03-07.zip Connecting to 97.74.215.114:21... connected! encrypted! Logging in as bhbackup ... Logged in! Length: 8,092,575 100%[====================================] 8,092,575 5.04K/s *** buffer overflow detected ***: wput terminated ======= Backtrace: ========= /lib/i386-linux-gnu/libc.so.6(__fortify_fail+0x45)[0x34b8d5] /lib/i386-linux-gnu/libc.so.6(+0xe66d7)[0x34a6d7] /lib/i386-linux-gnu/libc.so.6(+0xe5d35)[0x349d35] /lib/i386-linux-gnu/libc.so.6(_IO_default_xsputn+0x91)[0x2cff91] /lib/i386-linux-gnu/libc.so.6(_IO_vfprintf+0x36e6)[0x2a7816] /lib/i386-linux-gnu/libc.so.6(__vsprintf_chk+0xc9)[0x349e09] /lib/i386-linux-gnu/libc.so.6(__sprintf_chk+0x2f)[0x349d1f] wput[0x8052a96] wput[0x804dee5] wput[0x804e588] wput[0x805608d] wput[0x804bbf0] /lib/i386-linux-gnu/libc.so.6(__libc_start_main+0xf3)[0x27d113] ======= Memory map: ======== 00110000-001ba000 r-xp 00000000 08:01 7920 /usr/lib/i386-linux-gnu/libgnutls.so.26.16.14 001ba000-001bb000 ---p 000aa000 08:01 7920 /usr/lib/i386-linux-gnu/libgnutls.so.26.16.14 001bb000-001bf000 r--p 000aa000 08:01 7920 /usr/lib/i386-linux-gnu/libgnutls.so.26.16.14 001bf000-001c0000 rw-p 000ae000 08:01 7920 /usr/lib/i386-linux-gnu/libgnutls.so.26.16.14 001c0000-00242000 r-xp 00000000 08:01 7182 /lib/i386-linux-gnu/libgcrypt.so.11.7.0 00242000-00243000 r--p 00081000 08:01 7182 /lib/i386-linux-gnu/libgcrypt.so.11.7.0 00243000-00245000 rw-p 00082000 08:01 7182 /lib/i386-linux-gnu/libgcrypt.so.11.7.0 00245000-0024a000 r-xp 00000000 08:01 51705 /lib/i386-linux-gnu/libnss_dns-2.13.so 0024a000-0024b000 r--p 00004000 08:01 51705 /lib/i386-linux-gnu/libnss_dns-2.13.so 0024b000-0024c000 rw-p 00005000 08:01 51705 /lib/i386-linux-gnu/libnss_dns-2.13.so 00264000-003da000 r-xp 00000000 08:01 51697 /lib/i386-linux-gnu/libc-2.13.so 003da000-003dc000 r--p 00176000 08:01 51697 /lib/i386-linux-gnu/libc-2.13.so 003dc000-003dd000 rw-p 00178000 08:01 51697 /lib/i386-linux-gnu/libc-2.13.so 003dd000-003e0000 rw-p 00000000 00:00 0 0046d000-0048b000 r-xp 00000000 08:01 51694 /lib/i386-linux-gnu/ld-2.13.so 0048b000-0048c000 r--p 0001d000 08:01 51694 /lib/i386-linux-gnu/ld-2.13.so 0048c000-0048d000 rw-p 0001e000 08:01 51694 /lib/i386-linux-gnu/ld-2.13.so 0057b000-0058b000 r-xp 00000000 08:01 7194 /usr/lib/i386-linux-gnu/libtasn1.so.3.1.11 0058b000-0058c000 r--p 0000f000 08:01 7194 /usr/lib/i386-linux-gnu/libtasn1.so.3.1.11 0058c000-0058d000 rw-p 00010000 08:01 7194 /usr/lib/i386-linux-gnu/libtasn1.so.3.1.11 00831000-00844000 r-xp 00000000 08:01 51712 /lib/i386-linux-gnu/libresolv-2.13.so 00844000-00845000 r--p 00012000 08:01 51712 /lib/i386-linux-gnu/libresolv-2.13.so 00845000-00846000 rw-p 00013000 08:01 51712 /lib/i386-linux-gnu/libresolv-2.13.so 00846000-00848000 rw-p 00000000 00:00 0 008bf000-008db000 r-xp 00000000 08:01 11212 /lib/i386-linux-gnu/libgcc_s.so.1 008db000-008dc000 r--p 0001b000 08:01 11212 /lib/i386-linux-gnu/libgcc_s.so.1 008dc000-008dd000 rw-p 0001c000 08:01 11212 /lib/i386-linux-gnu/libgcc_s.so.1 00c95000-00c9e000 r-xp 00000000 08:01 7923 /usr/lib/i386-linux-gnu/libgnutls-openssl.so.26.16.14 00c9e000-00c9f000 r--p 00008000 08:01 7923 /usr/lib/i386-linux-gnu/libgnutls-openssl.so.26.16.14 00c9f000-00ca0000 rw-p 00009000 08:01 7923 /usr/lib/i386-linux-gnu/libgnutls-openssl.so.26.16.14 00ddf000-00dea000 r-xp 00000000 08:01 51706 /lib/i386-linux-gnu/libnss_files-2.13.so 00dea000-00deb000 r--p 0000a000 08:01 51706 /lib/i386-linux-gnu/libnss_files-2.13.so 00deb000-00dec000 rw-p 0000b000 08:01 51706 /lib/i386-linux-gnu/libnss_files-2.13.so 00e0a000-00e0b000 r-xp 00000000 00:00 0 [vdso] 00e10000-00e13000 r-xp 00000000 08:01 7174 /lib/i386-linux-gnu/libgpg-error.so.0.8.0 00e13000-00e14000 r--p 00002000 08:01 7174 /lib/i386-linux-gnu/libgpg-error.so.0.8.0 00e14000-00e15000 rw-p 00003000 08:01 7174 /lib/i386-linux-gnu/libgpg-error.so.0.8.0 00ea8000-00ebb000 r-xp 00000000 08:01 23393 /lib/i386-linux-gnu/libz.so.1.2.3.4 00ebb000-00ebc000 r--p 00012000 08:01 23393 /lib/i386-linux-gnu/libz.so.1.2.3.4 00ebc000-00ebd000 rw-p 00013000 08:01 23393 /lib/i386-linux-gnu/libz.so.1.2.3.4 08048000-0805c000 r-xp 00000000 08:01 2247 /usr/bin/wput 0805c000-0805d000 r--p 00013000 08:01 2247 /usr/bin/wput 0805d000-0805e000 rw-p 00014000 08:01 2247 /usr/bin/wput 085f7000-08618000 rw-p 00000000 00:00 0 [heap] b75c1000-b77c1000 r--p 00000000 08:01 1237 /usr/lib/locale/locale-archive b77c1000-b77c4000 rw-p 00000000 00:00 0 b77c8000-b77c9000 rw-p 00000000 00:00 0 b77c9000-b77ca000 r--p 002a1000 08:01 1237 /usr/lib/locale/locale-archive b77ca000-b77cb000 rw-p 00000000 00:00 0 bff7b000-bff9c000 rw-p 00000000 00:00 0 [stack] Aborted This may require a certain size of file being transferred to trigger it, and I'm not sure if --binary or --limit-rate is what triggers it. If I get time, I'll try to test that. I use this for backups out of a ADSL line. Being able to rate-limit keeps the DSL line from being clogged. ** Affects: wput (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/949689 Title: Wput ends with buffer overflow when rate-limited To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/wput/+bug/949689/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
