exportfs crash with long path
Bug #1062022 reported by
Ivan Romanov
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
nfs-utils (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
How reproducible:
always
Steps to Reproduce:
# mkdir -p /home/kudinae/
# echo '/home/
# exportfs -a
Segmentation fault
I've obtained the sources. So a crush happens on export.c:293. variable pos has negative value. I think problem into strtoint and export_hash functions. strtoint has unsigned type and always returns positive value but export_hash impicity cast it to signed int. So it is possible to get negative value.
I wrote patch to fix this.
security vulnerability: | no → yes |
security vulnerability: | yes → no |
Changed in nfs-utils (Ubuntu): | |
status: | Triaged → Fix Committed |
To post a comment you must log in.
The attachment "patch" of this bug report has been identified as being a patch. The ubuntu-reviewers team has been subscribed to the bug report so that they can review the patch. In the event that this is in fact not a patch you can resolve this situation by removing the tag 'patch' from the bug report and editing the attachment so that it is not flagged as a patch. Additionally, if you are member of the ubuntu-reviewers team please also unsubscribe the team from this bug report.
[This is an automated message performed by a Launchpad user owned by Brian Murray. Please contact him regarding any issues with the action taken in this bug report.]