Public bug reported:
Basic auth buffer ([email protected]:35) is only 80 bytes.
So any longer username/password combination (after being b64'd) will result
either in some kind of hidden or visible crash.
The same buffer size (80) is defined for a whole message to proxy
([email protected]:169) standalone daemon mode (do_daemon()) which probably
causes crashes as well or at least strange behaviour since parts of the memory
are definitely overwritten in strzcat, where the buffer is 65535.
Global value for buffers' sizes (macro [email protected]:56) is however
defined as 65536 and I think it should be used instead of those 80's.
** Affects: proxytunnel (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1648264
Title:
crash/coredump with long username/password (basic auth)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/proxytunnel/+bug/1648264/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
