Debian Bug report logs - #769938
procmail: NULL pointer dereference

Display info messages

Message #3 received at submit@bugs.debian.org (full text, mbox, reply):

From: Jakub Wilk <jwilk@debian.org>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: procmail: NULL pointer dereference

Date: Mon, 17 Nov 2014 19:48:28 +0100

Package: procmail
Version: 3.22-22
Usertags: afl

If there's no \n at all in the mail, or if the "From " line contains 
null byte, procmail dereferences NULL pointer:

$ printf 'From ' | procmail -d jwilk
Segmentation fault


This bug was brought to you by American fuzzy lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Debian Release: jessie/sid
 APT prefers unstable
 APT policy: (990, 'unstable'), (500, 'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages procmail depends on:
ii  libc6  2.19-13

Versions of packages procmail recommends:
ii  esmtp-run [mail-transport-agent]  1.2-12
ii  fetchmail                         6.3.26-1+b1

-- 
Jakub Wilk

Message #6 received at 769938-forwarded@bugs.debian.org (full text, mbox, reply):

From: Santiago Vila <sanvila@unex.es>

To: bug@procmail.org

Cc: 769938-forwarded@bugs.debian.org, Philip Guenther <guenther@sendmail.com>, "Stephen R. van den Berg" <srb@cuci.nl>, Jakub Wilk <jwilk@debian.org>

Subject: Bug#769938: procmail: NULL pointer dereference (fwd)

Date: Tue, 18 Nov 2014 10:59:32 +0100 (CET)

Hello again.

I received this report from the Debian bug system.

Since I don't usually receive replies for the bug reports I send to
this address, I'm going to Cc the author and the maintainer as well.

I don't intend to do this for every bug, but this is a segmentation fault.
In case I didn't say it before: procmail needs an upstream maintainer!

Thanks.

---------- Forwarded message ----------
From: Jakub Wilk <jwilk@debian.org>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Date: Mon, 17 Nov 2014 19:48:28 +0100
Subject: Bug#769938: procmail: NULL pointer dereference

Package: procmail
Version: 3.22-22
Usertags: afl

If there's no \n at all in the mail, or if the "From " line contains null byte,
procmail dereferences NULL pointer:

$ printf 'From ' | procmail -d jwilk
Segmentation fault


This bug was brought to you by American fuzzy lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Debian Release: jessie/sid
 APT prefers unstable
 APT policy: (990, 'unstable'), (500, 'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages procmail depends on:
ii  libc6  2.19-13

Versions of packages procmail recommends:
ii  esmtp-run [mail-transport-agent]  1.2-12
ii  fetchmail                         6.3.26-1+b1

-- 
Jakub Wilk

Message #11 received at 769938@bugs.debian.org (full text, mbox, reply):

From: Santiago Vila <sanvila@unex.es>

To: 769938@bugs.debian.org

Subject: Re: Bug#769938: procmail: NULL pointer dereference

Date: Wed, 19 Nov 2014 13:42:35 +0100 (CET)

This bug was forwarded to both the author (Stephen R. van den Berg)
and the last upstream maintainer (Philip Guenther).

We received a private reply from Philip Guenther, which is partially
reproduced below (after asking him for permission), as it is of
general interest:

---------- Forwarded message ----------
From: Philip Guenther

[...]

Unfortunately, I don't see procmail as a good base for mail filtering now.  
IMO, procmail brought two things to the table at the time: a more 
powerful--though obtuse--filtering language, and a better systems base for 
accepting and delivering messages.  The language is a poor match for the 
complexity of modern systems with lots of MIME traffic, while the base 
is--IMHO--too complex, too clever, and written in a style that doesn't 
attract new maintainers.  What were strengths in the past are no longer 
valuable and have become liabilities for a program exposed to general 
Internet email.

I learned much from procmail and it filtered a lot of email for me and the 
places I worked at, but the world has changed and I moved on years ago.  
I recommend others do so as well.

[...]

Message #12 received at 769938-forwarded@bugs.debian.org (full text, mbox, reply):

From: "Stephen R. van den Berg" <srb@cuci.nl>

To: Santiago Vila <sanvila@unex.es>

Cc: bug@procmail.org, 769938-forwarded@bugs.debian.org, Jakub Wilk <jwilk@debian.org>

Subject: Re: Bug#769938: procmail: NULL pointer dereference (fwd)

Date: Tue, 5 May 2020 13:31:58 +0200

[Message part 1 (text/plain, inline)]

Fixed in the upcoming 3.23.

On Tue, Nov 18, 2014 at 11:24 AM Santiago Vila <sanvila@unex.es> wrote:

> Hello again.
>
> I received this report from the Debian bug system.
>
> Since I don't usually receive replies for the bug reports I send to
> this address, I'm going to Cc the author and the maintainer as well.
>
> I don't intend to do this for every bug, but this is a segmentation fault.
> In case I didn't say it before: procmail needs an upstream maintainer!
>
> Thanks.
>
> ---------- Forwarded message ----------
> From: Jakub Wilk <jwilk@debian.org>
> To: Debian Bug Tracking System <submit@bugs.debian.org>
> Date: Mon, 17 Nov 2014 19:48:28 +0100
> Subject: Bug#769938: procmail: NULL pointer dereference
>
> Package: procmail
> Version: 3.22-22
> Usertags: afl
>
> If there's no \n at all in the mail, or if the "From " line contains null
> byte,
> procmail dereferences NULL pointer:
>
> $ printf 'From ' | procmail -d jwilk
> Segmentation fault
>
>
> This bug was brought to you by American fuzzy lop:
> http://lcamtuf.coredump.cx/afl/
>
> -- System Information:
> Debian Release: jessie/sid
>  APT prefers unstable
>  APT policy: (990, 'unstable'), (500, 'experimental')
> Architecture: i386 (x86_64)
> Foreign Architectures: amd64
>
> Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
> Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
>
> Versions of packages procmail depends on:
> ii  libc6  2.19-13
>
> Versions of packages procmail recommends:
> ii  esmtp-run [mail-transport-agent]  1.2-12
> ii  fetchmail                         6.3.26-1+b1
>
> --
> Jakub Wilk
>
>

-- 
Stephen.

[Message part 2 (text/html, inline)]

Message #17 received at 769938-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>

To: 769938-close@bugs.debian.org

Subject: Bug#769938: fixed in procmail 3.22-27

Date: Tue, 01 Mar 2022 14:34:28 +0000

Source: procmail
Source-Version: 3.22-27
Done: Santiago Vila <sanvila@debian.org>

We believe that the bug you reported is fixed in the latest version of
procmail, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 769938@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Santiago Vila <sanvila@debian.org> (supplier of updated procmail package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 01 Mar 2022 15:00:00 +0100
Source: procmail
Architecture: source
Version: 3.22-27
Distribution: unstable
Urgency: medium
Maintainer: Santiago Vila <sanvila@debian.org>
Changed-By: Santiago Vila <sanvila@debian.org>
Closes: 769938
Changes:
 procmail (3.22-27) unstable; urgency=medium
 .
   * Fix NULL pointer dereference. Closes: #769938.
     Reported by Jakub Wilk using American Fuzzy Lop.
     Patch from Stephen R. van den Berg.
Checksums-Sha1:
 139615baa316a45a02b5b19ee85b6abc4b1ea36f 1320 procmail_3.22-27.dsc
 8018421b7110a42bb35fd0c0e0a3a73a689b8e2c 20240 procmail_3.22-27.debian.tar.xz
 0c73450ed964f5440fd9b36eb9a52b0288914849 4121 procmail_3.22-27_source.buildinfo
Checksums-Sha256:
 e8d73f782ffcb9891bc6e68a5ebd1d9de3319fc07e8b9789243425db23d4b0f9 1320 procmail_3.22-27.dsc
 c75f9f419cac963f5e93cd9edf81d4c0dc4974f8bb2d30f7f1b8cfd1099a4e62 20240 procmail_3.22-27.debian.tar.xz
 11d5116f4ed61caa60a3b1edb9bac99659bc9908fc0f37a395c5d6751d8dd6f6 4121 procmail_3.22-27_source.buildinfo
Files:
 a0ff3b8ef751e6ed62a1d674cf14bc32 1320 mail standard procmail_3.22-27.dsc
 2e257e75ebeccdbb6edfc172dfbac6fc 20240 mail standard procmail_3.22-27.debian.tar.xz
 652fe34ca2e4e994ce7a5014c3ed6d25 4121 mail standard procmail_3.22-27_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEE1Uw7+v+wQt44LaXXQc5/C58bizIFAmIeJ70ACgkQQc5/C58b
izIhlwf+KeA7pzO2qI2HHUED39Jqgu0vX71q6xpJn9M/WSP1si/cPsnQz6daER1z
8sJ5CrlT462bWIhSDgd2K3AR8TAh6C2GacCOFGgx+QinJQAdGVwo2GXh7FLg8+dn
CxV4clhizc3ZyIElzarfCfW8KHmQpsyKsSZtpeqPl1WCxMqde7ipObpnjDv67Hek
GTwav51jVxrg/ep56DdGFwEz2qS1a3SXoUo3h/qdMduHc1YfdAn5HWcpfW7f5qTp
7tTj2+nS950yT8NQHtrr6rMKzvdKI5IlFWp3aaotxCPTBxdXJWWYx2ssu0URMjhk
86E5VVNwXN6aVGWw3Y4xvomwex6Wsg==
=rUgQ
-----END PGP SIGNATURE-----

Message #26 received at 769938-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>

To: 769938-close@bugs.debian.org

Subject: Bug#769938: fixed in procmail 3.22-26+deb11u1

Date: Sat, 02 Jul 2022 17:17:11 +0000

Source: procmail
Source-Version: 3.22-26+deb11u1
Done: Santiago Vila <sanvila@debian.org>

We believe that the bug you reported is fixed in the latest version of
procmail, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 769938@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Santiago Vila <sanvila@debian.org> (supplier of updated procmail package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 02 Jul 2022 13:20:00 +0200
Source: procmail
Architecture: source
Version: 3.22-26+deb11u1
Distribution: bullseye
Urgency: medium
Maintainer: Santiago Vila <sanvila@debian.org>
Changed-By: Santiago Vila <sanvila@debian.org>
Closes: 769938
Changes:
 procmail (3.22-26+deb11u1) bullseye; urgency=medium
 .
   * Fix NULL pointer dereference. Closes: #769938.
     Reported by Jakub Wilk using American Fuzzy Lop.
     Patch from Stephen R. van den Berg.
Checksums-Sha1:
 b3ee327e14ec0c9d633cc3fe7db5f84f1cf54fa4 1352 procmail_3.22-26+deb11u1.dsc
 2d27fe7ed2fd92655861850504e5035d33554c33 20252 procmail_3.22-26+deb11u1.debian.tar.xz
 0c73f000343b55d8d9abf40fd27264e8afaed1de 4302 procmail_3.22-26+deb11u1_source.buildinfo
Checksums-Sha256:
 406e388acfacd339522ae659ba5a8f4970c20a0f850e40085ca1c8933943bed1 1352 procmail_3.22-26+deb11u1.dsc
 e74afb37998affc7a1ae2182734cde36422cadfe38a6910a97c3bc61097033e8 20252 procmail_3.22-26+deb11u1.debian.tar.xz
 1f3b1c989cbb427fc400fb583c2dc9f9c05c6ea990d9d0d919686fad4081c231 4302 procmail_3.22-26+deb11u1_source.buildinfo
Files:
 435072eb7cf670770cc1089a1be6aebf 1352 mail standard procmail_3.22-26+deb11u1.dsc
 8d44b3683ec73252002ae6a5f4cd6b0d 20252 mail standard procmail_3.22-26+deb11u1.debian.tar.xz
 6ee9dbdc96d267e6a6a4dd065cffbad5 4302 mail standard procmail_3.22-26+deb11u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEE1Uw7+v+wQt44LaXXQc5/C58bizIFAmLAK4cACgkQQc5/C58b
izIAuwf/aEmaK0oGxJxj3Jirw/y+esHWz4hf9IMpXRYqYJlIKz7oNGWsx7SUfNXD
wIrVEFW0y856bIlCsvH78tP5+N6b7/dlrN/2538RzZJUgGXbzkEHw/V4yJyfRmlh
1gfbs2+rY+Dt0Gt0RLpvGo8uVZeVOjee6h/DWj976k7b96PDvwFwgzf4dSj6+ZHI
CncBa+GyWPnhUW9pcw1YNXlwsLqdCua7mc01EqnxhUeD7JGDrPgS/VQ4RJkONGpR
5c8hq0quoNUMgkqFfqLQTskuXng8ZyvDoFuBfZDTRSRA2nE1pY87TXPsWOThoFS4
TqWhZaLt/dYE5ABf+e3Jf+g4L+06CQ==
=lv/k
-----END PGP SIGNATURE-----

Message #35 received at 769938-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>

To: 769938-close@bugs.debian.org

Subject: Bug#769938: fixed in procmail 3.22-26+deb10u1

Date: Tue, 02 Aug 2022 20:16:13 +0000

Source: procmail
Source-Version: 3.22-26+deb10u1
Done: Santiago Vila <sanvila@debian.org>

We believe that the bug you reported is fixed in the latest version of
procmail, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 769938@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Santiago Vila <sanvila@debian.org> (supplier of updated procmail package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 31 Jul 2022 20:10:00 +0200
Source: procmail
Architecture: source
Version: 3.22-26+deb10u1
Distribution: buster
Urgency: medium
Maintainer: Santiago Vila <sanvila@debian.org>
Changed-By: Santiago Vila <sanvila@debian.org>
Closes: 769938
Changes:
 procmail (3.22-26+deb10u1) buster; urgency=medium
 .
   * Fix NULL pointer dereference. Closes: #769938.
     Reported by Jakub Wilk using American Fuzzy Lop.
     Patch from Stephen R. van den Berg.
Checksums-Sha1:
 26b2335c4ff2c4e6478d7984d627493807d20309 1352 procmail_3.22-26+deb10u1.dsc
 8eab2489620bfea156375c4a3eed07117e47fc15 20264 procmail_3.22-26+deb10u1.debian.tar.xz
 2ea78a30441abdd4ae478079e11cbe61f0b16f2e 3827 procmail_3.22-26+deb10u1_source.buildinfo
Checksums-Sha256:
 58f0539d391d7b280190e0f4131b61fdcfe6c9597e55391c60c1e85b6a34b394 1352 procmail_3.22-26+deb10u1.dsc
 79cc2a0e11d1e90116b87f1cc073d3836eaa2fce4e7b293715ca00753b00c147 20264 procmail_3.22-26+deb10u1.debian.tar.xz
 78f144116655af58217faada89c39b9358ee3dcf0dd39d4fba9a2653f567533c 3827 procmail_3.22-26+deb10u1_source.buildinfo
Files:
 2f369f8116963e28946ce5e5baa7b1af 1352 mail standard procmail_3.22-26+deb10u1.dsc
 9f746f00b1b079a483e49d4a6ee26f86 20264 mail standard procmail_3.22-26+deb10u1.debian.tar.xz
 a5b5a4f603eafecfd25b72c2d291c4ff 3827 mail standard procmail_3.22-26+deb10u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEE1Uw7+v+wQt44LaXXQc5/C58bizIFAmLmxw8ACgkQQc5/C58b
izKBZAf/Qgmn45iA6LKWm/o422J636lukMJy44Phd7q9HyrhsPDKJm2N78ETZ5UO
spM4SRw/nNaj+PkBm7ijgND0T/UBXC/qCmuKapNGGZQXknxJoxsf2BKHtc3gbgK0
xHpNkHYKhb8a4z78jrDik0byXUuETf60jDvHbilSk+/UhCw/ikU3nRAS70Mf6O2C
/VIsvX1tI8qQIQD2kL28PVrFtCEb47Xn7dyiNX2Pl9dVGZU74cSoKRS36DVG37IL
TaUcsUZadbWggZzQUVr/j0lSx9gtvaoNGUr9f2MoQYFlY1Gaw07EJIPZTo8BpKQY
bipCPmdFEEjrCMSz+CFUXmrbt+GHJQ==
=/CIt
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.