Menu

#119 semop01 corrupting get_arr.array

System Calls
closed-fixed
nobody
Testcases (113)
5
2007-04-05
2007-04-04
creese
No

The line:
get_arr.val = 0;

Is corrupting the get_arr union. Causing get_arr.array to have an illegal value. On a 32bit machine, this cause the array pointer to be NULL and the later free silently fails. On a 64bit big endian machine, this causes free to get a completely bogus pointer.

The set needs to use a different union than get_arr.

Discussion

  • creese

    creese - 2007-04-04

    Make the set use a differnet union

     
  • creese

    creese - 2007-04-04

    Logged In: YES
    user_id=1761305
    Originator: YES

    Here is a patch
    File Added: ltp-fix-semop01-get_arr.patch

     
  • Subrata Modak

    Subrata Modak - 2007-04-05

    Logged In: YES
    user_id=1737361
    Originator: NO

    Your Patch is accepted and Bug Fixed.

     
  • Subrata Modak

    Subrata Modak - 2007-04-05
    • status: open --> closed-fixed
     

Log in to post a comment.