GNU bug report logs - #19827
sed 4.2.2 hangs when passed specially crafted program

Previous Next

Package: sed;

Reported by: Alexander Nasonov <alnsn <at> yandex.ru>

Date: Tue, 10 Feb 2015 08:41:03 UTC

Severity: normal

Done: Jim Meyering <jim <at> meyering.net>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 19827 in the body.
You can then email your comments to 19827 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to bug-sed <at> gnu.org:
bug#19827; Package sed. (Tue, 10 Feb 2015 08:41:03 GMT) Full text and rfc822 format available.
Acknowledgement sent to Alexander Nasonov <alnsn <at> yandex.ru>:
New bug report received and forwarded. Copy sent to bug-sed <at> gnu.org. (Tue, 10 Feb 2015 08:41:03 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Alexander Nasonov <alnsn <at> yandex.ru>
To: bug-sed <at> gnu.org
Subject: sed 4.2.2 hangs when passed specially crafted program
Date: Tue, 10 Feb 2015 08:18:27 +0000

This was found by the afl fuzzer http://lcamtuf.coredump.cx/afl/

$ echo | gsed -f afl-out/crashes/id*03,*
^C

$ cat afl-out/crashes/id*03,*
$G
$D


$ hexdump -C afl-out/crashes/id*03,*
00000000  24 47 0a 24 44 0a 0a 0a                           |$G.$D...|
00000008


or

echo | gsed -e '$G
> $D
>
>
> '
^C

I ran the fuzzer and the test on NetBSD amd64 7.99.x.

Alex
Reply sent to Jim Meyering <jim <at> meyering.net>:
You have taken responsibility. (Mon, 04 May 2015 04:59:02 GMT) Full text and rfc822 format available.
Notification sent to Alexander Nasonov <alnsn <at> yandex.ru>:
bug acknowledged by developer. (Mon, 04 May 2015 04:59:03 GMT) Full text and rfc822 format available.

Message #10 received at 19827-done <at> debbugs.gnu.org (full text, mbox):

From: Jim Meyering <jim <at> meyering.net>
To: 19827-done <at> debbugs.gnu.org, Alexander Nasonov <alnsn <at> yandex.ru>
Subject: Re: sed 4.2.2 hangs when passed specially crafted program
Date: Sun, 3 May 2015 21:57:54 -0700

tags 19827 notabug
thanks

I've just noticed that there are some bug reports that have never
reached my inbox.
The first one I've examined is https://debbugs.gnu.org/19827, which reports
that you used the afl fuzzer http://lcamtuf.coredump.cx/afl/ to find that this
command never terminates:

  echo | sed/sed 'G;D'

However, that is a legitimate program, and
with that input, it happens to specify an endless loop.
Thus, I'm marking this as "notabug" and closing the issue.
However, you are welcome to make further comments.

Thank you for helping to test GNU sed!
I'm planning to release sed-3.4 soon, so if you have more
time for testing (using the latest from git), it'd be great to
see how we're doing.
bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Mon, 01 Jun 2015 11:24:05 GMT) Full text and rfc822 format available.
This bug report was last modified 8 years and 330 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.