lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <3FC241C9.6060409@mukappabeta.de> Date: Mon, 24 Nov 2003 18:37:13 +0100 From: Matthias Buelow <mkb@...appabeta.de> To: "Andreas \"Constantinides (MegaHz)\"" <megahz@...ahz.org> Cc: bugtraq@...urityfocus.com Subject: Re: simple buffer overflow in gedit Andreas Constantinides (MegaHz) wrote: > Hello, > I discover a strange but simple buffer overflow in gedit. > I am using RH9, > to demostrate the buffer here is a simple file buffer generator: [writes 9999999 A's to stdout] > # g++ -o buffer buffer.c > # ./buffer > lala > # gedit lala > Segmentation fault > # your process most likely gets killed because of a resource limit. check ulimit. gedit grows to over 300mb rss with that file as input and seems to stay occupied with running whatever suboptimal algorithms it has for that special case. clearly it's not the proper tool to operate on such files. it doesn't crash, however, at least not the current version 2.4.0. -- no signature is a good signature
Powered by blists - more mailing lists