From: SourceForge.net <no...@so...> - 2004-10-11 04:14:59
|
Bugs item #1044321, was opened at 2004-10-10 23:58 Message generated for change (Comment added) made by bluefoxicy You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=101627&aid=1044321&group_id=1627 Category: None Group: None Status: Open Resolution: None Priority: 5 Submitted By: John Richard Moser (bluefoxicy) Assigned to: Nobody/Anonymous (nobody) Summary: buffer overflow in gls_plugin_get() Initial Comment: In /var/log/syslog: Oct 10 23:53:54 icebox glame: stack smashing attack in function gls_plugin_get glame-1.0.2 on amd64 When a buffer is created on the stack, i.e. int foo() { char a[10]; // stack buffer } The IBM stack protector (fka ProPolice) places a guard value immediately after it. If this value is altered, the program aborts immediately. That's where this message is coming from. This indicates that something is overflowing a buffer in gls_plugin_get(). ---------------------------------------------------------------------- >Comment By: John Richard Moser (bluefoxicy) Date: 2004-10-11 00:14 Message: Logged In: YES user_id=696610 "This indicates that something is overflowing a buffer in gls_plugin_get()." a buffer CREATED in gls_plugin_get() on the stack, as shown in the above pseudocode ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=101627&aid=1044321&group_id=1627 |