I don't know whether this could be a security bug, so I'm marking it as one at the moment, just to be safe. So please don't hate me for being dumb with good intentions in case its not a security bug. $ su - Password: # exit logout *** glibc detected *** su: double free or corruption (out): 0x0000000001c9f310 *** ======= Backtrace: ========= /lib/libc.so.6[0x7ff85ad70468] /lib/libc.so.6(cfree+0x76)[0x7ff85ad71fa6] /lib/libpam.so.0[0x7ff85b49059c] /lib/libpam.so.0(pam_end+0x22)[0x7ff85b491092] su[0x4025f3] su[0x40337a] /lib/libc.so.6(__libc_start_main+0xe6)[0x7ff85ad1b5c6] su(misc_conv+0x221)[0x402389] ======= Memory map: ======== 00400000-00406000 r-xp 00000000 08:02 2086868 /bin/su 00605000-00606000 r--p 00005000 08:02 2086868 /bin/su 00606000-00607000 rw-p 00006000 08:02 2086868 /bin/su 00607000-0060b000 rw-p 00000000 00:00 0 01c8c000-01d03000 rw-p 00000000 00:00 0 [heap] 7ff853de9000-7ff853dff000 r-xp 00000000 08:02 1120294 /lib64/libgcc_s.so.1 7ff853dff000-7ff853ffe000 ---p 00016000 08:02 1120294 /lib64/libgcc_s.so.1 7ff853ffe000-7ff853fff000 r--p 00015000 08:02 1120294 /lib64/libgcc_s.so.1 7ff853fff000-7ff854000000 rw-p 00016000 08:02 1120294 /lib64/libgcc_s.so.1 7ff854000000-7ff854021000 rw-p 00000000 00:00 0 7ff854021000-7ff858000000 ---p 00000000 00:00 0 7ff85810b000-7ff858116000 r-xp 00000000 08:02 2202655 /lib64/libnss_files-2.9.so 7ff858116000-7ff858315000 ---p 0000b000 08:02 2202655 /lib64/libnss_files-2.9.so 7ff858315000-7ff858316000 r--p 0000a000 08:02 2202655 /lib64/libnss_files-2.9.so 7ff858316000-7ff858317000 rw-p 0000b000 08:02 2202655 /lib64/libnss_files-2.9.so 7ff858317000-7ff858321000 r-xp 00000000 08:02 2202671 /lib64/libnss_nis-2.9.so 7ff858321000-7ff858520000 ---p 0000a000 08:02 2202671 /lib64/libnss_nis-2.9.so 7ff858520000-7ff858521000 r--p 00009000 08:02 2202671 /lib64/libnss_nis-2.9.so 7ff858521000-7ff858522000 rw-p 0000a000 08:02 2202671 /lib64/libnss_nis-2.9.so 7ff858522000-7ff858529000 r-xp 00000000 08:02 2202673 /lib64/libnss_compat-2.9.so 7ff858529000-7ff858728000 ---p 00007000 08:02 2202673 /lib64/libnss_compat-2.9.so 7ff858728000-7ff858729000 r--p 00006000 08:02 2202673 /lib64/libnss_compat-2.9.so 7ff858729000-7ff85872a000 rw-p 00007000 08:02 2202673 /lib64/libnss_compat-2.9.so 7ff85872a000-7ff85872b000 r-xp 00000000 08:02 1646875 /lib64/security/pam_deny.so 7ff85872b000-7ff85892a000 ---p 00001000 08:02 1646875 /lib64/security/pam_deny.so 7ff85892a000-7ff85892b000 r--p 00000000 08:02 1646875 /lib64/security/pam_deny.so 7ff85892b000-7ff85892c000 rw-p 00001000 08:02 1646875 /lib64/security/pam_deny.so 7ff85892c000-7ff85892f000 r-xp 00000000 08:02 1646900 /lib64/security/pam_xauth.so 7ff85892f000-7ff858b2f000 ---p 00003000 08:02 1646900 /lib64/security/pam_xauth.so 7ff858b2f000-7ff858b30000 r--p 00003000 08:02 1646900 /lib64/security/pam_xauth.so 7ff858b30000-7ff858b31000 rw-p 00004000 08:02 1646900 /lib64/security/pam_xauth.so 7ff858b31000-7ff858b32000 r-xp 00000000 08:02 1646924 /lib64/security/pam_permit.so 7ff858b32000-7ff858d31000 ---p 00001000 08:02 1646924 /lib64/security/pam_permit.so 7ff858d31000-7ff858d32000 r--p 00000000 08:02 1646924 /lib64/security/pam_permit.so 7ff858d32000-7ff858d33000 rw-p 00001000 08:02 1646924 /lib64/security/pam_permit.so 7ff858d33000-7ff858d35000 r-xp 00000000 08:02 1815212 /lib64/security/pam_mktemp.so 7ff858d35000-7ff858f34000 ---p 00002000 08:02 1815212 /lib64/security/pam_mktemp.so 7ff858f34000-7ff858f35000 r--p 00001000 08:02 1815212 /lib64/security/pam_mktemp.so 7ff858f35000-7ff858f36000 rw-p 00002000 08:02 1815212 /lib64/security/pam_mktemp.so 7ff858f36000-7ff858f39000 r-xp 00000000 08:02 1646888 /lib64/security/pam_limits.so 7ff858f39000-7ff859138000 ---p 00003000 08:02 1646888 /lib64/security/pam_limits.so 7ff859138000-7ff859139000 r--p 00002000 08:02 1646888 /lib64/security/pam_limits.so 7ff859139000-7ff85913a000 rw-p 00003000 08:02 1646888 /lib64/security/pam_limits.so 7ff85913a000-7ff85913e000 r-xp 00000000 08:02 1815263 /lib64/security/pam_passwdqc.so 7ff85913e000-7ff85933e000 ---p 00004000 08:02 1815263 /lib64/security/pam_passwdqc.so 7ff85933e000-7ff85933f000 r--p 00004000 08:02 1815263 /lib64/security/pam_passwdqc.so 7ff85933f000-7ff859346000 rw-p 00005000 08:02 1815263 /lib64/security/pam_passwdqc.so 7ff859346000-7ff85935b000 r-xp 00000000 08:02 1259156 /lib64/libz.so.1.2.3 7ff85935b000-7ff85955a000 ---p 00015000 08:02 1259156 /lib64/libz.so.1.2.3 7ff85955a000-7ff85955b000 r--p 00014000 08:02 1259156 /lib64/libz.so.1.2.3 7ff85955b000-7ff85955c000 rw-p 00015000 08:02 1259156 /lib64/libz.so.1.2.3 7ff85955c000-7ff859564000 r-xp 00000000 08:02 2528743 /lib64/libcrack.so.2.8.0 7ff859564000-7ff859764000 ---p 00008000 08:02 2528743 /lib64/libcrack.so.2.8.0 7ff859764000-7ff859765000 r--p 00008000 08:02 2528743 /lib64/libcrack.so.2.8.0 7ff859765000-7ff859766000 rw-p 00009000 08:02 2528743 /lib64/libcrack.so.2.8.0 7ff859766000-7ff859769000 rw-p 00000000 00:00 0 7ff859769000-7ff85976c000 r-xp 00000000 08:02 1646853 /lib64/security/pam_cracklib.so 7ff85976c000-7ff85996b000 ---p 00003000 08:02 1646853 /lib64/security/pam_cracklib.so 7ff85996b000-7ff85996c000 r--p 00002000 08:02 1646853 /lib64/security/pam_cracklib.so 7ff85996c000-7ff85996d000 rw-p 00003000 08:02 1646853 /lib64/security/pam_cracklib.so 7ff85996d000-7ff859971000 rw-p 00000000 00:00 0 7ff859971000-7ff859986000 r-xp 00000000 08:02 2202670 /lib64/libnsl-2.9.so 7ff859986000-7ff859b85000 ---p 00015000 08:02 2202670 /lib64/libnsl-2.9.so 7ff859b85000-7ff859b86000 r--p 00014000 08:02 2202670 /lib64/libnsl-2.9.so 7ff859b86000-7ff859b87000 rw-p 00015000 08:02 2202670 /lib64/libnsl-2.9.so 7ff859b87000-7ff859b89000 rw-p 00000000 00:00 0 7ff859b89000-7ff859b94000 r-xp 00000000 08:02 1647382 /lib64/security/pam_unix.so 7ff859b94000-7ff859d93000 ---p 0000b000 08:02 1647382 /lib64/security/pam_unix.so 7ff859d93000-7ff859d94000 r--p 0000a000 08:02 1647382 /lib64/security/pam_unix.so 7ff859d94000-7ff859d95000 rw-p 0000b000 08:02 1647382 /lib64/security/pam_unix.so 7ff859d95000-7ff859da1000 rw-p 00000000 00:00 0 7ff859da1000-7ff859edc000 r-xp 00000000 08:02 2371514 /usr/lib64/libcrypto.so.0.9.8 7ff859edc000-7ff85a0dc000 ---p 0013b000 08:02 2371514 /usr/lib64/libcrypto.so.0.9.8 7ff85a0dc000-7ff85a0e7000 r--p 0013b000 08:02 2371514 /usr/lib64/libcrypto.so.0.9.8 7ff85a0e7000-7ff85a0fe000 rw-p 00146000 08:02 2371514 /usr/lib64/libcrypto.so.0.9.8 7ff85a0fe000-7ff85a102000 rw-p 00000000 00:00 0 7ff85a102000-7ff85a115000 r-xp 00000000 08:02 1614305 /lib64/security/pam_ssh.so 7ff85a115000-7ff85a314000 ---p 00013000 08:02 1614305 /lib64/security/pam_ssh.so 7ff85a314000-7ff85a315000 r--p 00012000 08:02 1614305 /lib64/security/pam_ssh.so 7ff85a315000-7ff85a316000 rw-p 00013000 08:02 1614305 /lib64/security/pam_ssh.so 7ff85a316000-7ff85a319000 r-xp 00000000 08:02 1646897 /lib64/security/pam_env.so 7ff85a319000-7ff85a518000 ---p 00003000 08:02 1646897 /lib64/security/pam_env.so 7ff85a518000-7ff85a519000 r--p 00002000 08:02 1646897 /lib64/security/pam_env.so 7ff85a519000-7ff85a51a000 rw-p 00003000 08:02 1646897 /lib64/security/pam_env.so 7ff85a51a000-7ff85a51c000 r-xp 00000000 08:02 1646934 /lib64/security/pam_wheel.so 7fAborted sys-apps/shadow-4.1.2.2 USE="cracklib pam -audit -nls (-selinux) -skey" sys-libs/pam-1.0.4 USE="cracklib -audit -nls (-selinux) -test -vim-syntax"
Created attachment 199725 [details] emerge --info
Created attachment 199726 [details] gdb bt full A full gdb backtrace of the "su" process crash.
*** This bug has been marked as a duplicate of bug 279538 ***
Jaak, thanks for the report. However, we don't think it is a security bug. Please check bug 279538 if you want more details and/or want to help resolving this issue.
