Debian Bug report logs -
#614815
bash: Segfaults on some libtool invocations due to sbrk() assumptions
Reported by: Samuel Thibault <sthibault@debian.org>
Date: Wed, 23 Feb 2011 16:03:01 UTC
Severity: important
Tags: fixed-upstream, patch, upstream
Found in version bash/4.1-3
Fixed in versions bash/4.2-1~exp1, bash/4.2-1
Done: Matthias Klose <doko@debian.org>
Bug is archived. No further changes may be made.
Forwarded to bug-bash@gnu.org
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Matthias Klose <doko@debian.org>:
Bug#614815; Package bash.
(Wed, 23 Feb 2011 16:03:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Samuel Thibault <sthibault@debian.org>:
New Bug report received and forwarded. Copy sent to Matthias Klose <doko@debian.org>.
(Wed, 23 Feb 2011 16:03:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Package: bash
Version: 4.1-3
Severity: important
Tags: patch
Hello,
I'm having some bash crashes when running libtool. It shows up that
the issue is that bash assumes being the only user of sbrk(), and thus
caches in memtop the assumed value of brk. However, libc can make use
of brk() for its own internal allocations, and thus memtop becomes
outdated. The ((char *)p + binsize(nunits) == memtop) then becomes
bogus. The attached patch fixes the crashes by simply removing the
caching, which is useless anyway since libc already avoids calling the
kernel system call when sbrk is given 0.
Thanks,
Samuel
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.37 (SMP w/2 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages bash depends on:
ii base-files 6.1 Debian base system miscellaneous f
ii dash 0.5.5.1-7.4 POSIX-compliant shell
ii debianutils 3.4.3 Miscellaneous utilities specific t
ii libc6 2.11.2-11 Embedded GNU C Library: Shared lib
ii libncurses5 5.7+20100313-5 shared libraries for terminal hand
Versions of packages bash recommends:
ii bash-completion 1:1.3-1 programmable completion for the ba
Versions of packages bash suggests:
pn bash-doc <none> (no description available)
-- no debconf information
--
Samuel Thibault <samuel.thibault@fnac.net>
<P> moo
<N> moo ?
<D> P: keski t'arrive? :))
<P> moooo
<N> moooooo ?
<P> rien le net marche je suis content :)
-+- #ens-mim - accro du net -+-
[patch-bash (text/plain, attachment)]
Added tag(s) upstream.
Request was from Samuel Thibault <sthibault@debian.org>
to control@bugs.debian.org.
(Fri, 22 Apr 2011 17:09:04 GMT) (full text, mbox, link).
Set Bug forwarded-to-address to 'bug-bash@gnu.org'.
Request was from Samuel Thibault <sthibault@debian.org>
to control@bugs.debian.org.
(Fri, 22 Apr 2011 17:09:04 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, Matthias Klose <doko@debian.org>:
Bug#614815; Package bash.
(Tue, 26 Apr 2011 21:39:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Samuel Thibault <sthibault@debian.org>:
Extra info received and forwarded to list. Copy sent to Matthias Klose <doko@debian.org>.
(Tue, 26 Apr 2011 21:39:04 GMT) (full text, mbox, link).
Message #14 received at 614815@bugs.debian.org (full text, mbox, reply):
tags 614815 + upstream fixed-upstream
thanks
Hello,
Upstream has apparently applied the patch.
Samuel
----- Forwarded message from Chet Ramey <chet.ramey@case.edu> -----
From: Chet Ramey <chet.ramey@case.edu>
To: samuel.thibault@gnu.org
Subject: Re: Segfaults on some libtool invocations due to sbrk() assumptions
Reply-To: chet.ramey@case.edu
Cc: bug-bash@gnu.org, chet@po.cwru.edu
Date: Tue, 26 Apr 2011 15:38:44 -0400
> The attached patch fixes the crashes by simply removing the
> caching, which is useless anyway since libc already avoids calling the
> kernel system call when sbrk is given 0.
Thanks for the patch. It's dangerous to assume the whole world is
Linux or glibc.
Chet
--
``The lyf so short, the craft so long to lerne.'' - Chaucer
``Ars longa, vita brevis'' - Hippocrates
Chet Ramey, ITS, CWRU chet@case.edu http://cnswww.cns.cwru.edu/~chet/
----- End forwarded message -----
Added tag(s) fixed-upstream.
Request was from Samuel Thibault <sthibault@debian.org>
to control@bugs.debian.org.
(Tue, 26 Apr 2011 21:39:24 GMT) (full text, mbox, link).
Reply sent
to Matthias Klose <doko@debian.org>:
You have taken responsibility.
(Sun, 11 Sep 2011 18:21:12 GMT) (full text, mbox, link).
Notification sent
to Samuel Thibault <sthibault@debian.org>:
Bug acknowledged by developer.
(Sun, 11 Sep 2011 18:21:12 GMT) (full text, mbox, link).
Message #21 received at 614815-close@bugs.debian.org (full text, mbox, reply):
Source: bash
Source-Version: 4.2-1~exp1
We believe that the bug you reported is fixed in the latest version of
bash, which is due to be installed in the Debian FTP archive:
bash-builtins_4.2-1~exp1_amd64.deb
to main/b/bash/bash-builtins_4.2-1~exp1_amd64.deb
bash-doc_4.2-1~exp1_all.deb
to main/b/bash/bash-doc_4.2-1~exp1_all.deb
bash-static_4.2-1~exp1_amd64.deb
to main/b/bash/bash-static_4.2-1~exp1_amd64.deb
bash_4.2-1~exp1.diff.gz
to main/b/bash/bash_4.2-1~exp1.diff.gz
bash_4.2-1~exp1.dsc
to main/b/bash/bash_4.2-1~exp1.dsc
bash_4.2-1~exp1_amd64.deb
to main/b/bash/bash_4.2-1~exp1_amd64.deb
bash_4.2.orig.tar.gz
to main/b/bash/bash_4.2.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 614815@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Matthias Klose <doko@debian.org> (supplier of updated bash package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 11 Sep 2011 17:52:30 +0200
Source: bash
Binary: bash bash-static bash-builtins bash-doc
Architecture: source all amd64
Version: 4.2-1~exp1
Distribution: experimental
Urgency: low
Maintainer: Matthias Klose <doko@debian.org>
Changed-By: Matthias Klose <doko@debian.org>
Description:
bash - GNU Bourne Again SHell
bash-builtins - Bash loadable builtins - headers & examples
bash-doc - Documentation and examples for the The GNU Bourne Again SHell
bash-static - GNU Bourne Again SHell (static version)
Closes: 587185 602244 602456 602483 614815 632177
Changes:
bash (4.2-1~exp1) experimental; urgency=low
.
[ Matthias Klose ]
* New upstream version.
* Apply upstream patches 001 - 010.
* Fix parsing of double doublequotes. LP: #780441.
* /etc/bash.bashrc:
- Fix quoting issue calling command-not-found. LP: #754859. Closes: #587185.
* Don't cache the value of brk between sbrk calls (Samuel Thibault).
Closes: #614815.
* Remove the bashdb and bash-completion packaging rules and files.
* Just link with libtinfo instead of libncurses if available.
* Make lintian happy.
.
[ Jonathan Nieder ]
* Update copyright file. Many files that were GPL-2+ were relicensed
under GPL-3+ in bash 4.0-rc1. Closes: #632177.
* debian/rules: Use "rm -rf" instead of rmdir to remove usr/share/info
directory in "with_gfdl = no" build. This prevents build failures when
using the unmodified upstream tarball.
* bash.preinst: Tidy up a little.
- Remove codepath that would rename .bash_profile → .profile if .profile
was unmodified from the gutsy → hardy transition. Closes: #602244
- Remove commented experiment from bash-completion transition.
- Remove misleading "dpkg --assert-support-predepends" check.
Closes: #602456.
- Move utility functions to a separate bash.preinst-lib.c and corresponding
declarations to bash.preinst.h.
* Remove /bin/sh symlink and /usr/share/man/man1/sh.1.gz from bash package
contents. Closes: #602483.
- debian/rules: Do not install /bin/sh and sh.1.gz symlinks.
- bash.preinst:
- Make sure /bin/sh is present and points to an executable, forcibly
creating symlinks /bin/sh -> bash and /usr/share/man/man1/sh.1.gz ->
bash.1.gz if not.
- Divert /bin/sh and sh.1.gz on behalf of dash if we are upgrading from
a bash version with /bin/sh in the files list and bash's copy of
/bin/sh is not already diverted. This ensures unpacking bash will not
cause /bin/sh to go missing.
* bash.postinst: Simplify comment that contained an implementation detail
about how /bin/sh is provided.
Checksums-Sha1:
80136dda8737e33630b783d36f5a83bf4f920043 1201 bash_4.2-1~exp1.dsc
7846bf9f2f2878ad83db407c40858a230def03b9 2796351 bash_4.2.orig.tar.gz
ed560aacbb29222815a3379a62f17502cc6ffa03 73719 bash_4.2-1~exp1.diff.gz
63ffa28b11c8c5d5cc03a1a8dda53bf5d2481b1d 697228 bash-doc_4.2-1~exp1_all.deb
0c29b083a533f87a8354eba3c6e32b63fb76cdc3 1489982 bash_4.2-1~exp1_amd64.deb
4e0688196846a7226f6af034283d37b8908cf45f 111892 bash-builtins_4.2-1~exp1_amd64.deb
2cee5220850ff2c7fbfa4d8611fca0c9710604ed 918650 bash-static_4.2-1~exp1_amd64.deb
Checksums-Sha256:
8a917e8e0f7f4614e270083aa6677bb54561ac55f73fe7aa51ef4534d0a20577 1201 bash_4.2-1~exp1.dsc
70037fbd9c428207d9daec9267f30eb0f26f3ba82ef5a9b5c923542d00de14de 2796351 bash_4.2.orig.tar.gz
d98df9694a143cb12b02c01df3fc0532d7f704039209ca6723345ad626a8a40b 73719 bash_4.2-1~exp1.diff.gz
852c31991d824a7c144459a47206ca01dd81ab1c5ca734063325ceabf5559851 697228 bash-doc_4.2-1~exp1_all.deb
441ab0d4236da481dd53feeaef7e26bf1a3da984ef7f483cd7eedd5ac0801ff4 1489982 bash_4.2-1~exp1_amd64.deb
b56181d5bb416ec00646547517b77fc573637d42404a5a7455d39d2de7a8cb79 111892 bash-builtins_4.2-1~exp1_amd64.deb
0bad27ff8308641af5a20d94bbdadf0ac50dfbb391dd4c72dd72edb6372e434f 918650 bash-static_4.2-1~exp1_amd64.deb
Files:
e71211898107673d2f1d0624c478b06c 1201 base required bash_4.2-1~exp1.dsc
02bed321ac495a42dee4b6ee1b24cb21 2796351 base required bash_4.2.orig.tar.gz
bf98375d1149e9e5b4799e3224415331 73719 base required bash_4.2-1~exp1.diff.gz
938c07e55d50c92408c7adac6409230b 697228 doc optional bash-doc_4.2-1~exp1_all.deb
4a6454598d6ec953cccc2cc476df00da 1489982 shells required bash_4.2-1~exp1_amd64.deb
415cddf6952b7b1ebc7dd8baf1cc47eb 111892 utils optional bash-builtins_4.2-1~exp1_amd64.deb
b397a76d0a586275d26a8754a02f9e16 918650 shells optional bash-static_4.2-1~exp1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iEYEARECAAYFAk5s+EEACgkQStlRaw+TLJzEpQCgpHWreb5NpcmB+OoX9WxO1xKL
mLYAoMC84jl8bqsAjmIvB4v6ukJozzKm
=dPBD
-----END PGP SIGNATURE-----
Reply sent
to Matthias Klose <doko@debian.org>:
You have taken responsibility.
(Wed, 30 Nov 2011 10:49:11 GMT) (full text, mbox, link).
Notification sent
to Samuel Thibault <sthibault@debian.org>:
Bug acknowledged by developer.
(Wed, 30 Nov 2011 10:49:17 GMT) (full text, mbox, link).
Message #26 received at 614815-close@bugs.debian.org (full text, mbox, reply):
Source: bash
Source-Version: 4.2-1
We believe that the bug you reported is fixed in the latest version of
bash, which is due to be installed in the Debian FTP archive:
bash-builtins_4.2-1_i386.deb
to main/b/bash/bash-builtins_4.2-1_i386.deb
bash-doc_4.2-1_all.deb
to main/b/bash/bash-doc_4.2-1_all.deb
bash-static_4.2-1_i386.deb
to main/b/bash/bash-static_4.2-1_i386.deb
bash_4.2-1.diff.gz
to main/b/bash/bash_4.2-1.diff.gz
bash_4.2-1.dsc
to main/b/bash/bash_4.2-1.dsc
bash_4.2-1_i386.deb
to main/b/bash/bash_4.2-1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 614815@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Matthias Klose <doko@debian.org> (supplier of updated bash package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 30 Nov 2011 07:29:05 +0100
Source: bash
Binary: bash bash-static bash-builtins bash-doc
Architecture: source all i386
Version: 4.2-1
Distribution: unstable
Urgency: low
Maintainer: Matthias Klose <doko@debian.org>
Changed-By: Matthias Klose <doko@debian.org>
Description:
bash - GNU Bourne Again SHell
bash-builtins - Bash loadable builtins - headers & examples
bash-doc - Documentation and examples for the The GNU Bourne Again SHell
bash-static - GNU Bourne Again SHell (static version)
Closes: 587185 602159 602244 602456 602483 614815 629929 632177 641350 648578
Changes:
bash (4.2-1) unstable; urgency=low
.
[ Matthias Klose ]
* New upstream version.
* Apply upstream patches 001 - 020.
* Fix parsing of double doublequotes. LP: #780441.
* /etc/bash.bashrc:
- Fix quoting issue calling command-not-found. LP: #754859. Closes: #587185.
* Don't cache the value of brk between sbrk calls (Samuel Thibault).
Closes: #614815.
* Remove the bashdb and bash-completion packaging rules and files.
* Just link with libtinfo instead of libncurses if available.
* Make lintian happy.
* Use quilt to apply patches.
* Fix build error with -Werror=format-security (Pierre Chifflier).
Closes: #641350.
* Fix build for the binary target, without calling the build target.
Closes: #602159.
* Fix cross builds (Steve McIntyre). Closes: #629929.
.
[ Jonathan Nieder ]
* Update copyright file. Many files that were GPL-2+ were relicensed
under GPL-3+ in bash 4.0-rc1. Closes: #632177.
* debian/rules: Use "rm -rf" instead of rmdir to remove usr/share/info
directory in "with_gfdl = no" build. This prevents build failures when
using the unmodified upstream tarball.
* bash.preinst: Tidy up a little.
- Remove codepath that would rename .bash_profile → .profile if .profile
was unmodified from the gutsy → hardy transition. Closes: #602244
- Remove commented experiment from bash-completion transition.
- Remove misleading "dpkg --assert-support-predepends" check.
Closes: #602456.
- Move utility functions to a separate bash.preinst-lib.c and corresponding
declarations to bash.preinst.h.
* Remove /bin/sh symlink and /usr/share/man/man1/sh.1.gz from bash package
contents. Closes: #602483.
- debian/rules: Do not install /bin/sh and sh.1.gz symlinks.
- bash.preinst:
- Make sure /bin/sh is present and points to an executable, forcibly
creating symlinks /bin/sh -> bash and /usr/share/man/man1/sh.1.gz ->
bash.1.gz if not.
- Divert /bin/sh and sh.1.gz on behalf of dash if we are upgrading from
a bash version with /bin/sh in the files list and bash's copy of
/bin/sh is not already diverted. This ensures unpacking bash will not
cause /bin/sh to go missing.
* bash.postinst: Simplify comment that contained an implementation detail
about how /bin/sh is provided.
* Use dpkg-buildflags to retrieve compiler options, including hardening flags.
Build-Depends: dpkg-dev (>= 1.16.1) (Steve Langasek). Closes: #629929.
* Pass --host to configure only when cross-compiling, --build always, as
recommended in autotools documentation (Steve Langasek).
.
* Merge from Ubuntu (closes: #648578):
- /etc/skel/.bashrc:
- Don't set HISTCONTROL twice. Thanks to Kevin Knerr. LP: #465500.
- Set HISTFILESIZE to 2000 and HISTSIZE to 1000. LP: #544542.
- README.Debian: Remove obsolete entry "Why is bash configured
with --disable-net-redirections?"
Checksums-Sha1:
367c1b283b0ae4cefd04df00d00a1676d5d0187c 1475 bash_4.2-1.dsc
7846bf9f2f2878ad83db407c40858a230def03b9 2796351 bash_4.2.orig.tar.gz
428944bc2f857ed9ff739c3ff6c1ff97c6d97b41 74773 bash_4.2-1.diff.gz
36ab46bac93bb3aaf1736496334de12b7b6d69ef 697572 bash-doc_4.2-1_all.deb
1d08b83a35b8c502d68559b7dac36a6de6c147eb 1471426 bash_4.2-1_i386.deb
baae47e5c7e9858557477804403fd2de9e640319 112028 bash-builtins_4.2-1_i386.deb
34b8787383017dbb358130f68f47151b8a747613 845820 bash-static_4.2-1_i386.deb
Checksums-Sha256:
87dfc0b8748f52a4579a437c24e6472d760fef151cae144cf300155af6d54dbb 1475 bash_4.2-1.dsc
70037fbd9c428207d9daec9267f30eb0f26f3ba82ef5a9b5c923542d00de14de 2796351 bash_4.2.orig.tar.gz
fcbd44a7fd036ad170cbcbd2d3234920bf6b05ae3f2d624c3111481f018dd036 74773 bash_4.2-1.diff.gz
a7e832956ff8225aabe5337e288c6bd26454dc9d9cbb267a437c0afc7ee10038 697572 bash-doc_4.2-1_all.deb
2adaa25450c64a9c689fd13cbc2020f48b260da48b437563d81e27b35a58c654 1471426 bash_4.2-1_i386.deb
649831ad05abc3754bdbfd28a60b5fb41dc93b111500bf9940c5a1e9b95624a1 112028 bash-builtins_4.2-1_i386.deb
be75a2b05888bc251ca71412a25d1436543e51ae0fb87a95222943b7f62ea517 845820 bash-static_4.2-1_i386.deb
Files:
3589c06cbc82d0dbcd51bc4b0f7eee40 1475 base required bash_4.2-1.dsc
02bed321ac495a42dee4b6ee1b24cb21 2796351 base required bash_4.2.orig.tar.gz
f3a255c3ae38c612cefbe035853e8fbc 74773 base required bash_4.2-1.diff.gz
ba454a71e97f97a72969761b86c96cc6 697572 doc optional bash-doc_4.2-1_all.deb
4825b660d9af32102a6a8959a4576d41 1471426 shells required bash_4.2-1_i386.deb
5758c6e244505d69f6cbc55de8f3822b 112028 utils optional bash-builtins_4.2-1_i386.deb
b080b467071ece5f7a052cadc9be53e7 845820 shells optional bash-static_4.2-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iEYEARECAAYFAk7WBkQACgkQStlRaw+TLJzgMwCcC6DeSNOos0VDeA+FdBwHQkEA
K8QAn2wZ/1tfe/xeZ5g62sRSfNhwK0XB
=/vvE
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sun, 08 Jan 2012 07:32:34 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Dec 6 07:14:10 2023;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.