[Bug 347779] [NEW] Buffer overflow in kompozer-bin

Sascha Morr mail at saschamorr.de
Tue Mar 24 08:06:17 UTC 2009 

Public bug reported:

When i start kompozer (from the universe repository) on my ubuntu 9.04
(development branch) test system i get the following output into the
terminal:


sascha at workstation:~$ kompozer
*** buffer overflow detected ***: /usr/lib/kompozer/kompozer-bin terminated
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6(__fortify_fail+0x48)[0xb7445da8]
/lib/tls/i686/cmov/libc.so.6[0xb7443eb0]
/lib/tls/i686/cmov/libc.so.6[0xb7444618]
/usr/lib/kompozer/kompozer-bin[0x804e968]
/usr/lib/kompozer/kompozer-bin[0x804ba43]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe5)[0xb735e775]
/usr/lib/kompozer/kompozer-bin[0x804b971]
======= Memory map: ========
08048000-08057000 r-xp 00000000 08:01 737562     /usr/lib/kompozer/kompozer-bin
08057000-08058000 r--p 0000f000 08:01 737562     /usr/lib/kompozer/kompozer-bin
08058000-08059000 rw-p 00010000 08:01 737562     /usr/lib/kompozer/kompozer-bin
08059000-0805a000 rw-p 08059000 00:00 0 
09f04000-09f25000 rw-p 09f04000 00:00 0          [heap]
b7147000-b714a000 rw-p b7147000 00:00 0 
b714a000-b714e000 r-xp 00000000 08:01 151225     /usr/lib/libXdmcp.so.6.0.0
b714e000-b714f000 rw-p 00003000 08:01 151225     /usr/lib/libXdmcp.so.6.0.0
b714f000-b7150000 rw-p b714f000 00:00 0 
b7150000-b7152000 r-xp 00000000 08:01 151223     /usr/lib/libXau.so.6.0.0
b7152000-b7153000 r--p 00001000 08:01 151223     /usr/lib/libXau.so.6.0.0
b7153000-b7154000 rw-p 00002000 08:01 151223     /usr/lib/libXau.so.6.0.0
b7154000-b7178000 r-xp 00000000 08:01 151286     /usr/lib/libexpat.so.1.5.2
b7178000-b717a000 r--p 00023000 08:01 151286     /usr/lib/libexpat.so.1.5.2
b717a000-b717b000 rw-p 00025000 08:01 151286     /usr/lib/libexpat.so.1.5.2
b717b000-b7193000 r-xp 00000000 08:01 151227     /usr/lib/libxcb.so.1.1.0
b7193000-b7194000 r--p 00017000 08:01 151227     /usr/lib/libxcb.so.1.1.0
b7194000-b7195000 rw-p 00018000 08:01 151227     /usr/lib/libxcb.so.1.1.0
b7195000-b719b000 r-xp 00000000 08:01 151639     /usr/lib/libxcb-render.so.0.0.0
b719b000-b719c000 r--p 00005000 08:01 151639     /usr/lib/libxcb-render.so.0.0.0
b719c000-b719d000 rw-p 00006000 08:01 151639     /usr/lib/libxcb-render.so.0.0.0
b719d000-b71a0000 r-xp 00000000 08:01 151641     /usr/lib/libxcb-render-util.so.0.0.0
b71a0000-b71a1000 r--p 00002000 08:01 151641     /usr/lib/libxcb-render-util.so.0.0.0
b71a1000-b71a2000 rw-p 00003000 08:01 151641     /usr/lib/libxcb-render-util.so.0.0.0
b71a2000-b71a3000 rw-p b71a2000 00:00 0 
b71a3000-b71c7000 r-xp 00000000 08:01 151513     /usr/lib/libpng12.so.0.27.0
b71c7000-b71c8000 r--p 00023000 08:01 151513     /usr/lib/libpng12.so.0.27.0
b71c8000-b71c9000 rw-p 00024000 08:01 151513     /usr/lib/libpng12.so.0.27.0
b71c9000-b71dc000 r-xp 00000000 08:01 151631     /usr/lib/libdirect-1.0.so.0.1.0
b71dc000-b71dd000 r--p 00012000 08:01 151631     /usr/lib/libdirect-1.0.so.0.1.0
b71dd000-b71de000 rw-p 00013000 08:01 151631     /usr/lib/libdirect-1.0.so.0.1.0
b71de000-b71e5000 r-xp 00000000 08:01 151633     /usr/lib/libfusion-1.0.so.0.1.0
b71e5000-b71e6000 r--p 00006000 08:01 151633     /usr/lib/libfusion-1.0.so.0.1.0
b71e6000-b71e7000 rw-p 00007000 08:01 151633     /usr/lib/libfusion-1.0.so.0.1.0
b71e7000-b724b000 r-xp 00000000 08:01 151632     /usr/lib/libdirectfb-1.0.so.0.1.0
b724b000-b724c000 r--p 00063000 08:01 151632     /usr/lib/libdirectfb-1.0.so.0.1.0
b724c000-b724d000 rw-p 00064000 08:01 151632     /usr/lib/libdirectfb-1.0.so.0.1.0
b724d000-b728d000 r-xp 00000000 08:01 151423     /usr/lib/libpixman-1.so.0.13.2
b728d000-b728f000 r--p 0003f000 08:01 151423     /usr/lib/libpixman-1.so.0.13.2
b728f000-b7290000 rw-p 00041000 08:01 151423     /usr/lib/libpixman-1.so.0.13.2
b7290000-b7291000 rw-p b7290000 00:00 0 
b7291000-b72a9000 r-xp 00000000 08:01 393275     /lib/libselinux.so.1
b72a9000-b72aa000 r--p 00017000 08:01 393275     /lib/libselinux.so.1
b72aa000-b72ab000 rw-p 00018000 08:01 393275     /lib/libselinux.so.1
b72ab000-b72db000 r-xp 00000000 08:01 393288     /lib/libpcre.so.3.12.1
b72db000-b72dc000 r--p 0002f000 08:01 393288     /lib/libpcre.so.3.12.1
b72dc000-b72dd000 rw-p 00030000 08:01 393288     /lib/libpcre.so.3.12.1
b72dd000-b72f1000 r-xp 00000000 08:01 393277     /lib/libz.so.1.2.3.3
b72f1000-b72f2000 r--p 00013000 08:01 39Aborted (core dumped)
sascha at workstation:~$ 


cheers
Sascha

** Affects: kompozer (Ubuntu)
     Importance: Undecided
         Status: New

** Description changed:

- When i will start kompozer (from the universe repository) on my ubuntu
- 9.04 (development branch) test system i get the following output into
- the terminal:
+ When i start kompozer (from the universe repository) on my ubuntu 9.04
+ (development branch) test system i get the following output into the
+ terminal:
  
  
  sascha at workstation:~$ kompozer
  *** buffer overflow detected ***: /usr/lib/kompozer/kompozer-bin terminated
  ======= Backtrace: =========
  /lib/tls/i686/cmov/libc.so.6(__fortify_fail+0x48)[0xb7445da8]
  /lib/tls/i686/cmov/libc.so.6[0xb7443eb0]
  /lib/tls/i686/cmov/libc.so.6[0xb7444618]
  /usr/lib/kompozer/kompozer-bin[0x804e968]
  /usr/lib/kompozer/kompozer-bin[0x804ba43]
  /lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe5)[0xb735e775]
  /usr/lib/kompozer/kompozer-bin[0x804b971]
  ======= Memory map: ========
  08048000-08057000 r-xp 00000000 08:01 737562     /usr/lib/kompozer/kompozer-bin
  08057000-08058000 r--p 0000f000 08:01 737562     /usr/lib/kompozer/kompozer-bin
  08058000-08059000 rw-p 00010000 08:01 737562     /usr/lib/kompozer/kompozer-bin
  08059000-0805a000 rw-p 08059000 00:00 0 
  09f04000-09f25000 rw-p 09f04000 00:00 0          [heap]
  b7147000-b714a000 rw-p b7147000 00:00 0 
  b714a000-b714e000 r-xp 00000000 08:01 151225     /usr/lib/libXdmcp.so.6.0.0
  b714e000-b714f000 rw-p 00003000 08:01 151225     /usr/lib/libXdmcp.so.6.0.0
  b714f000-b7150000 rw-p b714f000 00:00 0 
  b7150000-b7152000 r-xp 00000000 08:01 151223     /usr/lib/libXau.so.6.0.0
  b7152000-b7153000 r--p 00001000 08:01 151223     /usr/lib/libXau.so.6.0.0
  b7153000-b7154000 rw-p 00002000 08:01 151223     /usr/lib/libXau.so.6.0.0
  b7154000-b7178000 r-xp 00000000 08:01 151286     /usr/lib/libexpat.so.1.5.2
  b7178000-b717a000 r--p 00023000 08:01 151286     /usr/lib/libexpat.so.1.5.2
  b717a000-b717b000 rw-p 00025000 08:01 151286     /usr/lib/libexpat.so.1.5.2
  b717b000-b7193000 r-xp 00000000 08:01 151227     /usr/lib/libxcb.so.1.1.0
  b7193000-b7194000 r--p 00017000 08:01 151227     /usr/lib/libxcb.so.1.1.0
  b7194000-b7195000 rw-p 00018000 08:01 151227     /usr/lib/libxcb.so.1.1.0
  b7195000-b719b000 r-xp 00000000 08:01 151639     /usr/lib/libxcb-render.so.0.0.0
  b719b000-b719c000 r--p 00005000 08:01 151639     /usr/lib/libxcb-render.so.0.0.0
  b719c000-b719d000 rw-p 00006000 08:01 151639     /usr/lib/libxcb-render.so.0.0.0
  b719d000-b71a0000 r-xp 00000000 08:01 151641     /usr/lib/libxcb-render-util.so.0.0.0
  b71a0000-b71a1000 r--p 00002000 08:01 151641     /usr/lib/libxcb-render-util.so.0.0.0
  b71a1000-b71a2000 rw-p 00003000 08:01 151641     /usr/lib/libxcb-render-util.so.0.0.0
  b71a2000-b71a3000 rw-p b71a2000 00:00 0 
  b71a3000-b71c7000 r-xp 00000000 08:01 151513     /usr/lib/libpng12.so.0.27.0
  b71c7000-b71c8000 r--p 00023000 08:01 151513     /usr/lib/libpng12.so.0.27.0
  b71c8000-b71c9000 rw-p 00024000 08:01 151513     /usr/lib/libpng12.so.0.27.0
  b71c9000-b71dc000 r-xp 00000000 08:01 151631     /usr/lib/libdirect-1.0.so.0.1.0
  b71dc000-b71dd000 r--p 00012000 08:01 151631     /usr/lib/libdirect-1.0.so.0.1.0
  b71dd000-b71de000 rw-p 00013000 08:01 151631     /usr/lib/libdirect-1.0.so.0.1.0
  b71de000-b71e5000 r-xp 00000000 08:01 151633     /usr/lib/libfusion-1.0.so.0.1.0
  b71e5000-b71e6000 r--p 00006000 08:01 151633     /usr/lib/libfusion-1.0.so.0.1.0
  b71e6000-b71e7000 rw-p 00007000 08:01 151633     /usr/lib/libfusion-1.0.so.0.1.0
  b71e7000-b724b000 r-xp 00000000 08:01 151632     /usr/lib/libdirectfb-1.0.so.0.1.0
  b724b000-b724c000 r--p 00063000 08:01 151632     /usr/lib/libdirectfb-1.0.so.0.1.0
  b724c000-b724d000 rw-p 00064000 08:01 151632     /usr/lib/libdirectfb-1.0.so.0.1.0
  b724d000-b728d000 r-xp 00000000 08:01 151423     /usr/lib/libpixman-1.so.0.13.2
  b728d000-b728f000 r--p 0003f000 08:01 151423     /usr/lib/libpixman-1.so.0.13.2
  b728f000-b7290000 rw-p 00041000 08:01 151423     /usr/lib/libpixman-1.so.0.13.2
  b7290000-b7291000 rw-p b7290000 00:00 0 
  b7291000-b72a9000 r-xp 00000000 08:01 393275     /lib/libselinux.so.1
  b72a9000-b72aa000 r--p 00017000 08:01 393275     /lib/libselinux.so.1
  b72aa000-b72ab000 rw-p 00018000 08:01 393275     /lib/libselinux.so.1
  b72ab000-b72db000 r-xp 00000000 08:01 393288     /lib/libpcre.so.3.12.1
  b72db000-b72dc000 r--p 0002f000 08:01 393288     /lib/libpcre.so.3.12.1
  b72dc000-b72dd000 rw-p 00030000 08:01 393288     /lib/libpcre.so.3.12.1
  b72dd000-b72f1000 r-xp 00000000 08:01 393277     /lib/libz.so.1.2.3.3
  b72f1000-b72f2000 r--p 00013000 08:01 39Aborted (core dumped)
  sascha at workstation:~$ 
  
  
  cheers
  Sascha

-- 
Buffer overflow in kompozer-bin
https://bugs.launchpad.net/bugs/347779
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

More information about the universe-bugs mailing list