[Pkg-shadow-devel] Bug#675824: shadow: possible segfault in useradd
Igor Pashev
pashev.igor at gmail.com
Sun Jun 3 14:54:16 UTC 2012
Package: shadow
Version: passwd
Severity: normal
Dear Maintainer,
Function __pw_dup() in lib/pwmem.c allocates uninitialized memory for struct
passwd and then fills some members of that struct, but other members (e. g.
pw_age) are still uninitialized. It can results in segfault in putpwent() which
tests for pw_age.
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.0.0-1-amd64 (SMP w/4 CPU cores)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: putpwent-segfault.patch
Type: text/x-diff
Size: 414 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-shadow-devel/attachments/20120603/29354553/attachment.patch>
More information about the Pkg-shadow-devel
mailing list