Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 332255

Summary: net-analyzer/iptraf overflows buffers
Product: Gentoo Linux Reporter: Matt <jackdachef>
Component: New packagesAssignee: Gentoo Netmon project <netmon>
Status: RESOLVED FIXED    
Severity: normal CC: hardened
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 259417, 305781    

Description Matt 2010-08-11 14:04:29 UTC
version is 3.0.0-r5

                     ┌─────────────────────────────────┐
                      │ IP traffic monitor              *** buffer overflow detected ***: iptraf - terminatedal interface statistics    │
                      │ Detaiiptraf: buffer overflow attack in function <unknown> - terminated        │ Statistical breakdowns...       │
              Report to http://bugs.gentoo.org/         │
                      │────────────────────────Killed─

when compiling it with -U_FORTIFY_SOURCE (disabling it) it works fine


it crashes as soon as:

"IP traffic monitor" is selected via [ENTER]


it also seems to work fine with -D_FORTIFY_SOURCE=1 (less checking?)

so the preferred method would be to 

*) either replace -D_FORTIFY_SOURCE=2 with -D_FORTIFY_SOURCE=1

*) explicitely set -D_FORTIFY_SOURCE=1

this in addition to the default toolchain adds some checks with minimal runtime

the best would be to fix it upstream:

https://www.redhat.com/archives/fedora-devel-announce/2007-September/msg00015.html
Comment 1 Jeroen Roovers (RETIRED) gentoo-dev 2010-08-11 15:45:35 UTC
Try net-analyzer/iptraf-ng (see bug #305781
Comment 2 Justin Lecher (RETIRED) gentoo-dev 2010-11-28 09:28:55 UTC
+*iptraf-3.0.0-r6 (28 Nov 2010)
+
+  28 Nov 2010; Justin Lecher <jlec@gentoo.org>
+  +files/3.0.0-buffer-overflow.patch, +iptraf-3.0.0-r6.ebuild:
+  Fixes for overflows buffers taken from debian
+