Caudium

Tracker: Bugs

9 Caudium segfault with some HTTP queries - ID: 1028622

Last Update: Comment added ( grendel )

Details:

Self explanatory, setting a variable to '=&' make the
Caudium C module segfault as show:

(gdb) run
Starting program: /usr/local/bin/pike
[Thread debugging using libthread_db enabled]
[New Thread 1075661248 (LWP 23848)]
Pike v7.6 release 13 running Hilfe v3.5 (Incremental
Pike Frontend)
> _Caudium.parse_query_string("somevar=&", ([ ]), (< >));

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 1075661248 (LWP 23848)]
0x401157af in memcpy () from /lib/tls/libc.so.6
(gdb) bt
#0 0x401157af in memcpy () from /lib/tls/libc.so.6
#1 0x08466360 in ?? ()
#2 0x00000001 in ?? ()
#3 0x40524ee9 in url_decode (str=0x8447ad9 "", len=-1,
exist=0, simple=0)
at caudium.c:684
#4 0x40525e97 in f_parse_query_string (args=3) at
caudium.c:1013
[blabla]

Submitted:

David Gourdelier ( gourdelier ) - 2004-09-15 15:04

Priority:

Status:

Closed

Resolution:

Fixed

Assigned:

Marek Habersack

Category:

Caudium C modules

Group:

Caudium 1.4 CVS

Visibility:

Public

Comments ( 2 )

Date: 2004-09-15 19:51 Sender: grendel Logged In: YES user_id=26406 This bug is fixed in the current CVS version of Caudium. The fix will be included in the next official release of the server.
Date: 2004-09-15 15:33 Sender: kiwi Logged In: YES user_id=65373 Added a sanity check on url_decode() does that fix this potential crash ?

Attached File

Changes ( 4 )

Field	Old Value	Date	By
status_id	Open	2004-09-15 19:51	grendel
resolution_id	None	2004-09-15 19:51	grendel
close_date	-	2004-09-15 19:51	grendel
assigned_to	nobody	2004-09-15 16:40	gourdelier

Caudium

Tracker: Bugs

Comments ( 2 )

Attached File

No Files Currently Attached

Changes ( 4 )

About SourceForge

Find Software

Develop Software

Community

Help