Re: Vulnerability Report on Sharutils 4.15.2

bug-gnu-utils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Vulnerability Report on Sharutils 4.15.2

From:	Petr Pisar
Subject:	Re: Vulnerability Report on Sharutils 4.15.2
Date:	Tue, 10 Apr 2018 14:54:32 +0000 (UTC)
User-agent:	slrn/1.0.3 (Linux)

On 2018-04-06, Salvatore Bonaccorso <address@hidden> wrote:
> AFAICT for this issue still no proposed fix is available for the
> issues raised in
> https://lists.gnu.org/archive/html/bug-gnu-utils/2018-02/msg00003.html,

Well, I cannot reproduce it. Maybe the attachent with the reproducer is
wrong. The message reads 2.fuzz, but the attachent contains four
SIGSEGV*.fuzz files. Runnning unshar on any of them results in:

sh: line 14386: warning: here-document at line 37 delimited by end-of-file 
(wanted `_EOF_')
sh: line 14387: syntax error: unexpected end of file

(the line numbers differ) and valgrdind does not show any issue in the
unshar process.

-- Petr

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Vulnerability Report on Sharutils 4.15.2, Salvatore Bonaccorso, 2018/04/06
- Re: Vulnerability Report on Sharutils 4.15.2, Petr Pisar <=
  - Re: Vulnerability Report on Sharutils 4.15.2, Salvatore Bonaccorso, 2018/04/14

Prev by Date: Fw: Grep
Next by Date: sharutils-4.15.2 fails to build with glibc-2.28 prerelease
Previous by thread: Re: Vulnerability Report on Sharutils 4.15.2
Next by thread: Re: Vulnerability Report on Sharutils 4.15.2
Index(es):
- Date
- Thread