389835 – net-analyzer/gnome-nettool-2.32.0 buffer overflow detected when compiling with -march=native

Bug 389835 - net-analyzer/gnome-nettool-2.32.0 buffer overflow detected when compiling with -march=native

Summary: net-analyzer/gnome-nettool-2.32.0 buffer overflow detected when compiling wit...

Status:	RESOLVED NEEDINFO

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] GNOME (show other bugs)
Hardware:	x86 Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Linux Gnome Desktop Team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:	fortify-source
	Show dependency tree

Reported:	2011-11-07 19:05 UTC by Teun Blok
Modified:	2012-01-30 11:06 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
emerge --info (emerge_info,4.46 KB, text/plain) 2011-11-07 19:05 UTC, Teun Blok	Details
text of buffer overflow gnome-nettool (buffer overflow gnome-nettool,14.66 KB, text/plain) 2011-11-07 19:07 UTC, Teun Blok	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Teun Blok 2011-11-07 19:05:31 UTC

Created attachment 291921 [details]
emerge --info

The package net-analyzer/gnome-nettool-2.32.0 compiles ok. But when started from gnome menu I see a fraction of a second the gui and then it disappaered. When starting gnome-nettool from the commandline, I receive this error:

User or root makes no difference.

teun@i5-750 ~ $ gnome-nettool
*** buffer overflow detected ***: gnome-nettool terminated
======= Backtrace: =========
/lib/libc.so.6(__fortify_fail+0x50)[0xb702f360]
/lib/libc.so.6(+0xe72eb)[0xb702d2eb]
/lib/libc.so.6(+0xe65fd)[0xb702c5fd]
gnome-nettool(mii_get_basic+0x34c)[0x805ae5c]
======= Memory map: ========
08048000-08061000 r-xp 00000000 08:03 1063231    /usr/bin/gnome-nettool
08061000-08062000 r--p 00018000 08:03 1063231    /usr/bin/gnome-nettool
08062000-08063000 rw-p 00019000 08:03 1063231    /usr/bin/gnome-nettool
08a36000-08bc5000 rw-p 00000000 00:00 0          [heap]
b1100000-

For the rest of this error, see attachment.

Comment 1 Teun Blok 2011-11-07 19:07:12 UTC

Created attachment 291923 [details]
text of buffer overflow gnome-nettool

Comment 2 Pacho Ramos gentoo-dev

2011-11-22 01:37:24 UTC

I cannot reproduce this :/

Comment 3 Pacho Ramos gentoo-dev

2011-12-17 15:13:04 UTC

Have you tried to rebuild it with CFLAGS="-O2 -pipe" only?

Comment 4 Teun Blok 2012-01-08 09:48:36 UTC

(In reply to comment #3)
> Have you tried to rebuild it with CFLAGS="-O2 -pipe" only?

That solved it. Thanks!

Teun

Comment 5 Pacho Ramos gentoo-dev

2012-01-08 15:54:34 UTC

This is a bug in gcc then, as it is using unproper CFLAGS when using "native", reassigning as gcc maintainers will know better how to handle problems like this

Comment 6 Ryan Hill (RETIRED) gentoo-dev

2012-01-08 19:33:10 UTC

No, it just means it's getting triggered by some target-specific optimization.  It's still gnome-nettool that needs fixing.

What does `echo "" | gcc -march=native -v -E - 2>&1 | grep cc1` say?

Comment 7 Pacho Ramos gentoo-dev

2012-01-30 11:06:07 UTC

(In reply to comment #6)
> No, it just means it's getting triggered by some target-specific optimization. 
> It's still gnome-nettool that needs fixing.
> 
> What does `echo "" | gcc -march=native -v -E - 2>&1 | grep cc1` say?