Bug#757884: Functions nc_uriparse and ocuriparse causes segmentation faults on malformed URLs
Martin Steghöfer
martin at steghoefer.eu
Mon Aug 11 21:49:10 UTC 2014
Package: netcdf
Version: 4.1.3-7
The functions "nc_uriparse" in nc_uri.c and "ocuriparse" in ocuri.c
(which are very, very similar to each other, almost copies) both don't
check properly for malformed URIs. For example they cause a segmentation
fault when given the URI "file:o/", "file://", "file://a" or
"http://hostname/" (the latter one indirectly through a null-pointer
returned by the mentioned functions, which is then referenced in
ocuribuild, when doing an "ocopen").
This causes bugs in downstream libraries and executables, e.g. in mincdump:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=716119
As it's not fixed in the most recent upstream version (4.3.2), I tried
to report the bug upstream (to the netcdf developers), but it looks like
their bug tracking system is read-only, even after signing up (then what
do they have it for anyway?). I'm gonna try via email now.
But as the Debian package is way behind upstream (sticking with 4.1.*),
an upstream fix probably wouldn't help you, either. So I provided a
patch to fix the problem.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: malformed-uri-crash.patch
Type: text/x-diff
Size: 2736 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-grass-devel/attachments/20140811/49888f2c/attachment.patch>
More information about the Pkg-grass-devel
mailing list