[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
format bug
From: |
Eric Blake |
Subject: |
format bug |
Date: |
Mon, 28 May 2007 22:15:27 -0600 |
User-agent: |
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.10) Gecko/20070221 Thunderbird/1.5.0.10 Mnenhy/0.7.5.666 |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Try this for a fun time:
$ echo 'format(%*.*d,-1,-1,1)' | m4 | wc
1 1 2280281
Oops - that was 2 million+ characters that I wasn't expecting! Patch
coming up later. I don't think the bug can be exploited to run arbitrary
code, but executing printf without enough arguments is never a good idea.
- --
Don't work too hard, make some time for fun as well!
Eric Blake address@hidden
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Cygwin)
Comment: Public key at home.comcast.net/~ericblake/eblake.gpg
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGW6jf84KuGfSFAYARAufLAKCtqr+IiG9e1sD1ljKHnBu+VtJyEACgwdLW
YXoa4eOBfiPmmmXKaX3h6pk=
=VJ89
-----END PGP SIGNATURE-----
- format bug,
Eric Blake <=
- Re: format bug, Eric Blake, 2007/05/29
- Re: format bug, Eric Blake, 2007/05/30
- Re: format bug, Gary V. Vaughan, 2007/05/31
- Re: format bug, Eric Blake, 2007/05/31
- Re: format bug, Gary V. Vaughan, 2007/05/31
- Re: format bug, Daniel Richard G., 2007/05/31
- Re: format bug, Eric Blake, 2007/05/31
- Re: format bug, Daniel Richard G., 2007/05/31
- Re: format bug, Eric Blake, 2007/05/31