'Re: Two heap-buffer-overflow crashes in ncurses 6.1 - patch 20191012'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ncurses-bug
Subject:    Re: Two heap-buffer-overflow crashes in ncurses 6.1 - patch 20191012
From:       "Hongxu(primary)" <leftcopy.chx () gmail ! com>
Date:       2019-10-16 3:23:25
Message-ID: CAJPBKOF7KD4w4AJXcRTLUxJURsPkA-U_APn3D6m3AeFQwO2Qsg () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]

Hi Thomas,

    Both crashes result from out-of-bound reads to strings. Indeed using
"heap-buffer-overflow" is not precise.

Best Regards,
Hongxu

On Wed, Oct 16, 2019 at 5:49 AM Thomas Dickey <dickey@his.com> wrote:

> On Tue, Oct 15, 2019 at 11:25:28PM +0800, Hongxu(primary) wrote:
> > Hi,
> >
> >     As of ncurses 6.1 - patch 20191012, there are two crashes resulting
> > from heap-buffer-overflow.
>
> It helps to get the categorization correct - see
>
> https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00021.html
>
> --
> Thomas E. Dickey <dickey@invisible-island.net>
> https://invisible-island.net
> ftp://ftp.invisible-island.net
>

[Attachment #5 (text/html)]

<div dir="ltr">Hi Thomas,<div><br></div><div>      Both crashes result from \
out-of-bound reads to strings. Indeed using &quot;heap-buffer-overflow&quot; is not \
precise.</div><div><br clear="all"><div><div dir="ltr" class="gmail_signature" \
data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><font \
color="#313131" face="Arial, sans-serif"><span style="font-size:12px">Best \
Regards,</span></font><div><font color="#313131" face="Arial, sans-serif"><span \
style="font-size:12px">Hongxu</span></font></div></div></div></div></div></div><br></div></div><br><div \
class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, Oct 16, 2019 at 5:49 AM \
Thomas Dickey &lt;<a href="mailto:dickey@his.com">dickey@his.com</a>&gt; \
wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Tue, Oct 15, 2019 \
at 11:25:28PM +0800, Hongxu(primary) wrote:<br> &gt; Hi,<br>
&gt; <br>
&gt;        As of ncurses 6.1 - patch 20191012, there are two crashes resulting<br>
&gt; from heap-buffer-overflow.<br>
<br>
It helps to get the categorization correct - see<br>
<br>
<a href="https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00021.html" \
rel="noreferrer" target="_blank">https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00021.html</a><br>
 <br>
-- <br>
Thomas E. Dickey &lt;<a href="mailto:dickey@invisible-island.net" \
target="_blank">dickey@invisible-island.net</a>&gt;<br> <a \
href="https://invisible-island.net" rel="noreferrer" \
target="_blank">https://invisible-island.net</a><br> <a \
href="ftp://ftp.invisible-island.net" rel="noreferrer" \
target="_blank">ftp://ftp.invisible-island.net</a><br> </blockquote></div>

[Attachment #6 (text/plain)]

_______________________________________________
Bug-ncurses mailing list
Bug-ncurses@gnu.org
https://lists.gnu.org/mailman/listinfo/bug-ncurses

[prev in list] [next in list] [prev in thread] [next in thread] 