Ubuntu
g15macro package

g15macro crashes with buffer overflow

Bug #657598 reported by Andreas Sonnenbichler on 2010-10-10

62

This bug affects 12 people

Affects		Status	Importance	Assigned to	Milestone
	g15daemon (Debian)	New	Undecided	Unassigned
	g15daemon (Ubuntu)	Fix Released	Undecided	Unassigned
	Natty	Won't Fix	Undecided	Unassigned
	Oneiric	Fix Released	Undecided	Unassigned
	g15macro (Ubuntu)	Invalid	Undecided	Unassigned
	Natty	Invalid	Undecided	Unassigned
	Oneiric	Invalid	Undecided	Unassigned

Bug Description

Binary package hint: g15macro

acs@shibyeni:~$ g15macro
restoring codes
XTest disabled by configure option. Using XSendEvent instead.
*** buffer overflow detected ***: g15macro terminated

ADDITIONAL INFORMATION
Ubuntu 10.10 RC AMD64 Desktop Standard

acs@shibyeni:~$ uname -a
Linux shibyeni 2.6.35-22-generic #33-Ubuntu SMP Sun Sep 19 20:32:27 UTC 2010 x86_64 GNU/Linux

acs@shibyeni:~$ ps axu | grep g15
nobody 2515 0.2 0.0 40068 1324 ? Ssl 08:47 0:19 g15daemon
acs 2530 0.1 0.0 39420 1520 ? Sl 08:48 0:13 g15stats
acs 19903 0.0 0.0 12760 880 pts/0 S+ 11:20 0:00 grep --color=auto g15

Tags:

Related branches

lp:~druke/ubuntu/natty/g15daemon/bug-657598

Merged into lp:ubuntu/natty/g15daemon

Marc Deslauriers: Approve on 2011-06-14

Ubuntu branches: Pending requested 2011-06-10

lp:ubuntu/oneiric/g15daemon

lp:ubuntu/natty-proposed/g15daemon

Revision history for this message

Andreas Sonnenbichler (andreas-sonnenbichler) wrote on 2010-10-10:

#1

log Edit (6.1 KiB, text/plain)

Revision history for this message

Alex (a-t-page) wrote on 2011-01-04:

#2

Very similar situation here. The LCD on the keyboard does flash the g15macro logo before crashing. Killing g15stats first doesn't change the result. 2.6.35-23-generic x86_64.

Revision history for this message

Christian Diefenbach (christiand59) wrote on 2011-05-19:

#3

This is a bug in libg15daemon_client.

fix at http://www.g15tools.com/node/82

Revision history for this message

BrandonTomlinson (druke) wrote on 2011-06-10:

#4

Not sure how long it will take for this to get fixed, I added a patched recipe into my ppa. g15macro works great now.

Marc Deslauriers (mdeslaur) on 2011-06-14

Changed in g15macro (Ubuntu):
status:	New → Invalid
Changed in g15daemon (Ubuntu):
status:	New → Confirmed
Changed in g15macro (Ubuntu Natty):
status:	New → Invalid
Changed in g15daemon (Ubuntu Natty):
status:	New → Confirmed

Revision history for this message

Launchpad Janitor (janitor) wrote on 2011-06-14:

#5

This bug was fixed in the package g15daemon - 1.9.5.3-8.2ubuntu1

---------------
g15daemon (1.9.5.3-8.2ubuntu1) oneiric; urgency=low

* libg15daemon_client/g15daemon_net.c: Fixed a potential buffer-overflow
related to (LP: #657598), as suggested at http://www.g15tools.com/node/82
-- Brandon Tomlinson <email address hidden> Fri, 10 Jun 2011 06:59:38 -0500

Changed in g15daemon (Ubuntu Oneiric):
status:	Confirmed → Fix Released

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2011-06-14:

#6

Thanks for the merge request. The patch looks good. I've gone ahead and uploaded the fix to Oneiric, and will prepare an SRU for Natty.

Could you please report this issue to Debian, and link the Debian bug here. Thanks!

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2011-06-14:

#7

SRU request:

Impact: program will terminate on Natty with a buffer overflow error.
The problem has been corrected by adding a minimal patch, see attached debdiff.

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2011-06-14:

#8

SRU for natty Edit (1.1 KiB, text/plain)

Revision history for this message

Martin Pitt (pitti) wrote on 2011-06-17:

#9

@security team: Should this be handled in natty-security instead?

Revision history for this message

Chris Halse Rogers (raof) wrote on 2011-06-29:

#10

10:52 <micahg> RAOF: it's not a security issue per say since it crashes on startup

Approved by SRU team. Please accept into natty-proposed.

Revision history for this message

Kees Cook (kees) wrote on 2011-06-29:

#11

@pitti no need -- it's not a security vulnerability. (because of the compiler flags, this is just a crash, not an exploitable bug)

Revision history for this message

Martin Pitt (pitti) wrote on 2011-06-29: Please test proposed package

#12

Accepted g15daemon into natty-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you in advance!

Changed in g15daemon (Ubuntu Natty):
status:	Confirmed → Fix Committed
tags:	added: verification-needed

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2011-10-20:

#13

This looks like just a crasher and that stack protector should catch it. Unsubscribing ubuntu-security.

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2014-12-03:

#14

natty has seen the end of its life and is no longer receiving any updates. Marking the natty task for this ticket as "Won't Fix".

Changed in g15daemon (Ubuntu Natty):
status:	Fix Committed → Won't Fix

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

SRU for natty Edit

Add patch

Bug attachments

log Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.