tar 1.13.21 dumps core, allocation error found.

bug-gnu-utils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

tar 1.13.21 dumps core, allocation error found.

From:	Jan D.
Subject:	tar 1.13.21 dumps core, allocation error found.
Date:	Wed, 29 Aug 2001 22:20:10 +0200 (CEST)

Hello.

Running:

% gcc --version
3.0.1
% uname -sr
Linux 2.4.9
% /lib/libc.so.6
GNU C Library stable release version 2.2.4, by Roland McGrath et al.
...
% LANG=C tar --version
tar (GNU tar) 1.13.21
...

Extracting koffice-1.1.tar (available from the KDE site) gives a
repeatable core dump at the same place in the archive, if the
extracted directory is removed before each extraction attempt.

In extract.c there is a allocation done for a filename and then the
filename is strcpy:ed.  But space for terminating '\0' is not taken
into account, leading to memory corruption.

Here is a patch:

Index: src/extract.c
--- src/extract.c.orig  Wed Aug 29 21:48:57 2001
+++ src/extract.c       Wed Aug 29 22:07:35 2001
@@ -281,7 +281,7 @@
 {
   size_t file_name_len = strlen (file_name);
   struct delayed_set_stat *data =
-    xmalloc (offsetof (struct delayed_set_stat, file_name) + file_name_len);
+    xmalloc (offsetof (struct delayed_set_stat, file_name) + file_name_len +1);
   data->file_name_len = file_name_len;
   strcpy (data->file_name, file_name);
   data->invert_permissions = invert_permissions;

        Jan D.

[Prev in Thread]

Current Thread

[Next in Thread]

tar 1.13.21 dumps core, allocation error found., Jan D. <=
- Re: tar 1.13.21 dumps core, allocation error found., Paul Eggert, 2001/08/29
- Re: tar 1.13.21 dumps core, allocation error found., Paul Eggert, 2001/08/29

Prev by Date: ssed: CR is put in wrong position when $ is used
Next by Date: Re: tar 1.13.21 dumps core, allocation error found.
Previous by thread: ssed: CR is put in wrong position when $ is used
Next by thread: Re: tar 1.13.21 dumps core, allocation error found.
Index(es):
- Date
- Thread