Public bug reported: I recently tried using barrybackup-gui to pull some contacts off of my old Blackberry but was getting a buffer overflow error. Searched around and saw that other people were having this issue. Someone posted the reason (strncpy() copying 8-bytes to char tar_header::magic[6]), and a solution: Gentoo Forum Post - http://forums.gentoo.org/viewtopic-p-6877454.html?sid=0479913fb3f9e9885fb7f0a70ed6faac#6877454 Gentoo Bug #387557 - barry - https://bugs.gentoo.org/show_bug.cgi?id=387557 Gentoo Bug #340253 - libtar - https://bugs.gentoo.org/show_bug.cgi?id=340253
The patch is here: https://340253.bugs.gentoo.org/attachment.cgi?id=261035 Relevant backtrace: *** buffer overflow detected ***: barrybackup terminated ======= Backtrace: ========= /lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x37)[0x7f5870b13007] /lib/x86_64-linux-gnu/libc.so.6(+0x107f00)[0x7f5870b11f00] /lib/x86_64-linux-gnu/libc.so.6(+0x1071e6)[0x7f5870b111e6] /usr/lib/libtar.so.0(th_finish+0x2f)[0x7f58717142ef] /usr/lib/libtar.so.0(th_write+0x51)[0x7f5871713dc1] barrybackup[0x41f91f] barrybackup[0x41d1f7] /usr/lib/libbarry.so.0(+0x487fd)[0x7f5872d7a7fd] /usr/lib/libbarry.so.0(_ZN5Barry4Mode7Desktop12LoadDatabaseEjRNS_6ParserE+0x9d)[0x7f5872d7cb3d] barrybackup[0x41b5b5] ** Affects: libtar (Ubuntu) Importance: Undecided Status: New ** Tags: barry barrybackup libtar -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1074752 Title: Bugfix not applied for buffer overflow originating from encode.c:th_finish() ? To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libtar/+bug/1074752/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
