[bug-GNUnet] Security bug in GNUnet

bug-gnunet

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-GNUnet] Security bug in GNUnet

From:	Luigi Auriemma
Subject:	[bug-GNUnet] Security bug in GNUnet
Date:	Wed, 10 May 2006 20:14:53 +0200

Hey,

I want to report a security bug I have found in GNUnet (tested both
0.7.0d and revision 2758).

The bug is very simple and is an infinite loop in the UDP section of
GNUnet.
In short the usage of FIONREAD for handling the asynchronous socket
creates problems when a packet of 0 bytes is received, the program will
be no longer able to handle the incoming packets and the CPU reaches the
100% usage.

Testing the bug is very simple, just send a packet of 0 bytes to the
port 2086 of the program.
There is a tool on my website which makes the job easily:

  http://aluigi.org/testz/udpsz.zip

  udpsz 127.0.0.1 2068 0

(if the link doesn't work copy it in the browser's bar).

I wait your reply.


BYEZ


--- 
Luigi Auriemma
http://aluigi.org
http://mirror.aluigi.org

[Prev in Thread]

Current Thread

[Next in Thread]

[bug-GNUnet] Security bug in GNUnet, Luigi Auriemma <=
- Re: [bug-GNUnet] Security bug in GNUnet, Christian Grothoff, 2006/05/11
  - Re: [bug-GNUnet] Security bug in GNUnet, N. Durner, 2006/05/11

Prev by Date: [bug-GNUnet] Re: it's bug gnunet-pseudonym or not ??
Next by Date: Re: [bug-GNUnet] Security bug in GNUnet
Previous by thread: [bug-GNUnet] it's bug gnunet-pseudonym or not ??
Next by thread: Re: [bug-GNUnet] Security bug in GNUnet
Index(es):
- Date
- Thread