Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 246036 - ls: stack smashing attack in function gobble_file
Summary: ls: stack smashing attack in function gobble_file
Status: VERIFIED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Hardened (show other bugs)
Hardware: x86 Linux
: High major (vote)
Assignee: The Gentoo Linux Hardened Team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-11-08 10:24 UTC by Lars Schonert
Modified: 2010-01-08 10:35 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
emerge --info (emerge.info,9.62 KB, text/plain)
2008-11-08 10:24 UTC, Lars Schonert 		Details
grsec and pax related kernel konfig params (kernel.config,2.96 KB, text/plain)
2008-11-08 10:27 UTC, Lars Schonert 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Lars Schonert 2008-11-08 10:24:17 UTC 
ls crash, if more than 23 or 25 items in a directory?
i don't know, how many objects must be in a directory before ls give up.

---schnipp---
*** stack smashing detected ***: ls - terminated
ls: stack smashing attack in function gobble_file - terminated
Report to http://bugs.gentoo.org/
Killed
---schnapp---

Reproducible: Always

Steps to Reproduce:
1.goto / ... ls ok
2.goto /etc ... ls crash
3.goto / ... ls ok
Comment 1 Lars Schonert 2008-11-08 10:24:43 UTC 
Created attachment 171088 [details]
emerge --info
Comment 2 Lars Schonert 2008-11-08 10:27:52 UTC 
Created attachment 171090 [details]
grsec and pax related kernel konfig params
Comment 3 Lars Schonert 2008-11-17 11:51:45 UTC 
"revdeprebuild" and "emerge -e system" solve the problem.
Comment 4 Vasilij K. Savin 2009-10-14 10:16:13 UTC 
(In reply to comment #2)
> Created an attachment (id=171090) [details]
> grsec and pax related kernel konfig params
> 

Not exactly - changing kernel to un-hardened solves nothing.
Also I found that it not depends on items number but on softlinks in the listed directory.
Comment 5 Vasilij K. Savin 2009-10-14 10:19:16 UTC 
(In reply to comment #2)
> Created an attachment (id=171090) [details]
> grsec and pax related kernel konfig params
> 

Not exactly - changing kernel to un-hardened solves nothing.
Also I found that it not depends on items number but on softlinks in the listed directory.

(In reply to comment #3)
> "revdeprebuild" and "emerge -e system" solve the problem.

Do not solves it for me :(
Comment 6 Ralph Schmidt 2010-01-08 10:35:47 UTC 
Same problem here on some hosts, comment #2 and #3 do not solves it for me too :(