You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@apr.apache.org by bu...@apache.org on 2012/08/07 18:45:45 UTC
[Bug 53676] New: Uninitialized memory access when parsing DBDParams
in apr_dbd_freetds.c could lead to crashes
https://issues.apache.org/bugzilla/show_bug.cgi?id=53676
Priority: P2
Bug ID: 53676
Assignee: bugs@apr.apache.org
Summary: Uninitialized memory access when parsing DBDParams in
apr_dbd_freetds.c could lead to crashes
Severity: normal
Classification: Unclassified
OS: All
Reporter: mi+apache@aldan.algebra.com
Hardware: All
Status: NEW
Version: 1.4.1
Component: APR-util
Product: APR
Created attachment 29183
--> https://issues.apache.org/bugzilla/attachment.cgi?id=29183&action=edit
Fix parsing of DBDParams in apr_dbd_freetds.c
DBDParams are expected to be strings like
"username=foo,password=bar,server=doofus". The parsing code looks for the next
=-sign first and then retracts back to find the beginning of the key (such as
"username"). The current code skips before the very first key into
uninitialized memory.
The attached patch also adds a tiny bit of const-poisoning and the inclusion of
<sybfront.h>, which is necessary, when compiling against real Sybase headers
rather than FreeTDS (though FreeTDS supplies the header too).
But the actual bug-fix is in the third (last) hunk of the patch.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@apr.apache.org
For additional commands, e-mail: bugs-help@apr.apache.org
[Bug 53676] Uninitialized memory access when parsing DBDParams in
apr_dbd_freetds.c could lead to crashes
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=53676
Mikhail T. <mi...@aldan.algebra.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Keywords| |PatchAvailable
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@apr.apache.org
For additional commands, e-mail: bugs-help@apr.apache.org
[Bug 53676] Uninitialized memory access when parsing DBDParams in
apr_dbd_freetds.c could lead to crashes
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=53676
Mikhail T. <mi...@aldan.algebra.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |DUPLICATE
--- Comment #1 from Mikhail T. <mi...@aldan.algebra.com> ---
*** This bug has been marked as a duplicate of bug 53666 ***
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@apr.apache.org
For additional commands, e-mail: bugs-help@apr.apache.org
[Bug 53676] Uninitialized memory access when parsing DBDParams in
apr_dbd_freetds.c could lead to crashes
Posted by bu...@apache.org.
https://issues.apache.org/bugzilla/show_bug.cgi?id=53676
Mikhail T. <mi...@aldan.algebra.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #29183|0 |1
is patch| |
Attachment #29183|application/octet-stream |text/plain
mime type| |
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@apr.apache.org
For additional commands, e-mail: bugs-help@apr.apache.org