[prev in list] [next in list] [prev in thread] [next in thread]
List: ncurses-bug
Subject: Re: Two heap-buffer-overflow crashes in ncurses 6.1 - patch 20191012
From: "Hongxu(primary)" <leftcopy.chx () gmail ! com>
Date: 2019-10-16 3:23:25
Message-ID: CAJPBKOF7KD4w4AJXcRTLUxJURsPkA-U_APn3D6m3AeFQwO2Qsg () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi Thomas,
Both crashes result from out-of-bound reads to strings. Indeed using
"heap-buffer-overflow" is not precise.
Best Regards,
Hongxu
On Wed, Oct 16, 2019 at 5:49 AM Thomas Dickey <dickey@his.com> wrote:
> On Tue, Oct 15, 2019 at 11:25:28PM +0800, Hongxu(primary) wrote:
> > Hi,
> >
> > As of ncurses 6.1 - patch 20191012, there are two crashes resulting
> > from heap-buffer-overflow.
>
> It helps to get the categorization correct - see
>
> https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00021.html
>
> --
> Thomas E. Dickey <dickey@invisible-island.net>
> https://invisible-island.net
> ftp://ftp.invisible-island.net
>
[Attachment #5 (text/html)]
<div dir="ltr">Hi Thomas,<div><br></div><div> Both crashes result from \
out-of-bound reads to strings. Indeed using "heap-buffer-overflow" is not \
precise.</div><div><br clear="all"><div><div dir="ltr" class="gmail_signature" \
data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><font \
color="#313131" face="Arial, sans-serif"><span style="font-size:12px">Best \
Regards,</span></font><div><font color="#313131" face="Arial, sans-serif"><span \
style="font-size:12px">Hongxu</span></font></div></div></div></div></div></div><br></div></div><br><div \
class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, Oct 16, 2019 at 5:49 AM \
Thomas Dickey <<a href="mailto:dickey@his.com">dickey@his.com</a>> \
wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Tue, Oct 15, 2019 \
at 11:25:28PM +0800, Hongxu(primary) wrote:<br> > Hi,<br>
> <br>
> As of ncurses 6.1 - patch 20191012, there are two crashes resulting<br>
> from heap-buffer-overflow.<br>
<br>
It helps to get the categorization correct - see<br>
<br>
<a href="https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00021.html" \
rel="noreferrer" target="_blank">https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00021.html</a><br>
<br>
-- <br>
Thomas E. Dickey <<a href="mailto:dickey@invisible-island.net" \
target="_blank">dickey@invisible-island.net</a>><br> <a \
href="https://invisible-island.net" rel="noreferrer" \
target="_blank">https://invisible-island.net</a><br> <a \
href="ftp://ftp.invisible-island.net" rel="noreferrer" \
target="_blank">ftp://ftp.invisible-island.net</a><br> </blockquote></div>
[Attachment #6 (text/plain)]
_______________________________________________
Bug-ncurses mailing list
Bug-ncurses@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-ncurses
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic