RE: Buffer overflow in awk

From: Kosh Naranek (koshat_private)
Date: Sat Mar 16 2002 - 12:07:50 PST

Next message: Eduardo Cruz: "Re: Wireless Legality- Netstumbler and kin"

Previous message: zero: "Re: CSS implication"
Maybe in reply to: keoki: "Buffer overflow in awk"
Next in thread: Hani Mustafa: "RE: Buffer overflow in awk"
Next in thread: Enphourell Security: "Re: Buffer overflow in awk"
Reply: Hani Mustafa: "RE: Buffer overflow in awk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On debian 2.2r3 unstable
squall:~# awk -f `perl -e 'print "A" x 1022'` 
awk: cannot open
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAA (File name too long)

Same for 8177 and 65535


-----Original Message-----
From: Charles-Edouard Ruault [mailto:cruaultat_private] 
Sent: Saturday, 16 March 2002 03:06
To: Walter Jr.
Cc: vuln-devat_private
Subject: Re: Buffer overflow in awk


same behaviour on GNU Awk 3.1.0, on redhat 7.2

Walter Jr. wrote:

>So does conectiva  2.2.13-9cl , awk 3.0.3
>
>From: "Max" <flux9at_private>
>
>>I can reproduce this on Slackware 8.0, but it takes 8177 char's to 
>>segfault.
>>
>
>>>From: keoki [mailto:keokiat_private]
>>>
>>>A buffer overflow exist in awk(named awk on most
>>>systems, but actualy is gawk/GNU awk) when calling 
>>>
>>the -f option, to include an awk script, and supplying a
>>filename with a buffer length of 1022 and up. 
>>[root@neural keoki]# awk -f `perl -e 'print "A" x 1022'` 
>>awk: fatal error: internal error 
>>Abort (core dumped
>>
>)
>


-- 
Charles-Edouard Ruault

Next message: Eduardo Cruz: "Re: Wireless Legality- Netstumbler and kin"
Previous message: zero: "Re: CSS implication"
Maybe in reply to: keoki: "Buffer overflow in awk"
Next in thread: Hani Mustafa: "RE: Buffer overflow in awk"
Next in thread: Enphourell Security: "Re: Buffer overflow in awk"
Reply: Hani Mustafa: "RE: Buffer overflow in awk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Mar 17 2002 - 21:42:06 PST