Public bug reported: There’s a buffer overflow bug in lrzsz’s zsdata() function: if the length of the data to be sent is 0, then we spit out roughly 55,000 bytes.
This can be triggered by sending the abort sequence (0x18 0x18 0x18 0x18 0x18 0x08 0x08 0x08 0x08 0x08) to sz while sz is sending a file. There’s a patch here: https://github.com/gooselinux/lrzsz/blob/master/lrzsz-0.12.20.patch Where is the canonical repo for lrzsz now? Uwe Ohse doesn’t seem to maintain it actively anymore. ** Affects: lrzsz (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1719953 Title: lrzsz buffer overflow To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lrzsz/+bug/1719953/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
