Re: Buffer overflow in awk

• Previous message: Blue Boar: "Re: I HATE antivirus scanners"
• In reply to: Hani Mustafa: "RE: Buffer overflow in awk"
• Next in thread: Tim Gerritsen: "Re: Buffer overflow in awk"
• Next in thread: Enphourell Security: "Re: Buffer overflow in awk"
• Reply: Tim Gerritsen: "Re: Buffer overflow in awk"
• Reply: Replugge [ROD]: "Re: Buffer overflow in awk"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

awk -f `perl -e 'print "A" x 8205'`

crashes with
GNU Awk 3.0.6
running on FreeBSD 4.5-STABLE
----- Original Message -----
From: "Hani Mustafa" <hani.mustafaat_private>
To: "Kosh Naranek" <koshat_private>; "Charles-Edouard Ruault"
<cruaultat_private>; "Walter Jr." <walterjrat_private>
Cc: <vuln-devat_private>
Sent: Sunday, March 24, 2002 12:26 PM
Subject: RE: Buffer overflow in awk


> Try 8025
>
> euclid#awk -f `perl -e 'print "A" x 8205'`
> awk: fatal error: internal error
> Aborted (core dumped)
>
> 8204 gives an output similar to what you have pasted.
>
>
> At 06:07 AM 3/17/2002 +1000, Kosh Naranek wrote:
> >On debian 2.2r3 unstable
> >squall:~# awk -f `perl -e 'print "A" x 1022'`
> >awk: cannot open
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> >AAAAAAAAAAAAAA (File name too long)
> >
> >Same for 8177 and 65535
> >
> >
> >-----Original Message-----
> >From: Charles-Edouard Ruault [mailto:cruaultat_private]
> >Sent: Saturday, 16 March 2002 03:06
> >To: Walter Jr.
> >Cc: vuln-devat_private
> >Subject: Re: Buffer overflow in awk
> >
> >
> >same behaviour on GNU Awk 3.1.0, on redhat 7.2
> >
> >Walter Jr. wrote:
> >
> > >So does conectiva  2.2.13-9cl , awk 3.0.3
> > >
> > >From: "Max" <flux9at_private>
> > >
> > >>I can reproduce this on Slackware 8.0, but it takes 8177 char's to
> > >>segfault.
> > >>
> > >
> > >>>From: keoki [mailto:keokiat_private]
> > >>>
> > >>>A buffer overflow exist in awk(named awk on most
> > >>>systems, but actualy is gawk/GNU awk) when calling
> > >>>
> > >>the -f option, to include an awk script, and supplying a
> > >>filename with a buffer length of 1022 and up.
> > >>[root@neural keoki]# awk -f `perl -e 'print "A" x 1022'`
> > >>awk: fatal error: internal error
> > >>Abort (core dumped
> > >>
> > >)
> > >
> >
> >
> >--
> >Charles-Edouard Ruault
>

• Next message: Jason Lewis: "RE: IDS and SSL"
• Previous message: Blue Boar: "Re: I HATE antivirus scanners"
• In reply to: Hani Mustafa: "RE: Buffer overflow in awk"
• Next in thread: Tim Gerritsen: "Re: Buffer overflow in awk"
• Next in thread: Enphourell Security: "Re: Buffer overflow in awk"
• Reply: Tim Gerritsen: "Re: Buffer overflow in awk"
• Reply: Replugge [ROD]: "Re: Buffer overflow in awk"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Mar 24 2002 - 15:13:59 PST