Created attachment 404096 [details] emerge --info dmesg: May 27 10:39:50 [glibc-gentoo-hardened-check] *** buffer overflow detected ***: sarg terminated; report to <http://bugs.gentoo.org/>_ command line as issued: t6wall ~ # sarg -d 15/05/2015-30/05/2015 -g -e -n -o /var/www/localhost/htdocs/squid-rports/ *** buffer overflow detected ***: sarg terminated; report to <http://bugs.gentoo.org/> Killed
Sarg 2.3.8 with use gd, ldap, pcre enabled.
Created attachment 404100 [details] strace of command
Please rebuild with debug symbols enabled (-ggdb) and obtain a backtrace. https://wiki.gentoo.org/wiki/Project:Quality_Assurance/Backtraces
GNU gdb (Gentoo 7.7.1 p1) 7.7.1 Copyright (C) 2014 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-pc-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <http://bugs.gentoo.org/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from sarg...(no debugging symbols found)...done. (gdb) r -d 15/05/2015-30/05/2015 -g -e -n -o /var/www/localhost/htdocs/squid-reports/ Starting program: /usr/bin/sarg -d 15/05/2015-30/05/2015 -g -e -n -o /var/www/localhost/htdocs/squid-reports/ warning: Cannot call inferior functions, Linux kernel PaX protection forbids return to non-executable pages! *** buffer overflow detected ***: sarg terminated; report to <http://bugs.gentoo.org/> Program terminated with signal SIGKILL, Killed. The program no longer exists. (gdb) bt No stack. (gdb)
PaX control v0.9 Copyright 2004,2005,2006,2007,2009,2010,2011,2012,2014 PaX Team <pageexec@freemail.hu> - PaX flags: -p-s-m-x-e-- [/usr/bin/sarg] PAGEEXEC is disabled SEGMEXEC is disabled MPROTECT is disabled RANDEXEC is disabled EMUTRAMP is disabled
This bug was against 2.3.8. I unmasked and emerged 2.3.10 and it executes successfully.
I see this as fixed in newer version. buffer overflow detected is a fortify sources check and that applay to default gentoo to.