Re: buffer overflow on whois (redhat linux 7.0/7.1 on i686)

From: Nelson Sampaio Araujo Junior (nelsonat_private)
Date: Wed Jan 30 2002 - 11:53:50 PST

Previous message: Eduardo Damato: "buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
In reply to: Eduardo Damato: "buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
Next in thread: ladd harris: "Re: buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I have experienced this on an apache installation. Doing a rpm -Fvh should
solve. If not, deleting and reinstalling the package should do it.

Regards
Nelson

----- Original Message -----
From: "Eduardo Damato" <damatoat_private>
To: <vuln-devat_private>
Sent: Wednesday, January 30, 2002 4:37 PM
Subject: buffer overflow on whois (redhat linux 7.0/7.1 on i686)


>
> Hi All,
>
> Can anyone reproduce the following errors?
> I got them in 3 Redhat 7.0/7.1 (i686) boxes. It is possibly due to a
> buffer overflow. I have upgraded the linux boxes to the latest glibc
> available (glibc-2.2.4-19.3). It didnt happen on red hat 7.2 though.
>
>
> $whois
> syntax: whois [-v] [-r] [-h server] [-p port] [--] query[@server[:port]]
> default server is whois.crsnic.net
>
> $whois -r
> Segmentation fault (core dumped)
> $whois -v
> Segmentation fault (core dumped)
> $whois -h
> Segmentation fault (core dumped)
> $whois -p
> Segmentation fault (core dumped)
>
> Apparently the problem is a NULL call to strlen() in glibc.
> Analysing the cores generated by whois i got the following errors:
>
> #0  0x400bf071 in strlen () from /lib/i686/libc.so.6
>
>
>
> $gdb whois core
> GNU gdb 5.0rh-5 Red Hat Linux 7.1
> Copyright 2001 Free Software Foundation, Inc.
> GDB is free software, covered by the GNU General Public License, and you
are
> welcome to change it and/or distribute copies of it under certain
conditions.
> Type "show copying" to see the conditions.
> There is absolutely no warranty for GDB.  Type "show warranty" for
details.
> This GDB was configured as "i386-redhat-linux"...(no debugging symbols
found)...
> Core was generated by `whois -p'.
> Program terminated with signal 11, Segmentation fault.
> Reading symbols from /lib/libresolv.so.2...done.
> Loaded symbols for /lib/libresolv.so.2
> Reading symbols from /lib/i686/libc.so.6...done.
> Loaded symbols for /lib/i686/libc.so.6
> Reading symbols from /lib/ld-linux.so.2...done.
> Loaded symbols for /lib/ld-linux.so.2
> #0  0x400bf071 in strlen () from /lib/i686/libc.so.6
>
>
> --
> Eduardo Damato
> Network Analyst - GRC/UNESP
> email: damatoat_private
>
>
>

Next message: Jan: "switch jamming"
Previous message: Eduardo Damato: "buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
In reply to: Eduardo Damato: "buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
Next in thread: ladd harris: "Re: buffer overflow on whois (redhat linux 7.0/7.1 on i686)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jan 30 2002 - 12:12:16 PST