[ glame-Bugs-1044321 ] buffer overflow in gls_plugin_get()

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Bugs item #1044321, was opened at 2004-10-10 23:58
Message generated for change (Comment added) made by bluefoxicy
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=101627&aid=1044321&group_id=1627

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: John Richard Moser (bluefoxicy)
Assigned to: Nobody/Anonymous (nobody)
Summary: buffer overflow in gls_plugin_get()

Initial Comment:
In /var/log/syslog:
Oct 10 23:53:54 icebox glame: stack smashing attack in
function gls_plugin_get

glame-1.0.2 on amd64

When a buffer is created on the stack, i.e.

int foo() {
  char a[10]; // stack buffer
}

The IBM stack protector (fka ProPolice) places a guard
value immediately after it.  If this value is altered,
the program aborts immediately.  That's where this
message is coming from.  This indicates that something
is overflowing a buffer in gls_plugin_get().

----------------------------------------------------------------------

>Comment By: John Richard Moser (bluefoxicy)
Date: 2004-10-11 00:14

Message:
Logged In: YES 
user_id=696610

"This indicates that something is overflowing a buffer in
gls_plugin_get()."

a buffer CREATED in gls_plugin_get() on the stack, as shown
in the above pseudocode

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=101627&aid=1044321&group_id=1627