home  bbs  files  messages ]

      ZZLI4416             linux.debian.bugs.dist             15094 messages      

[ previous | next | reply ]

[ list messages | list forums ]

  Msg # 14952 of 15094 on ZZLI4416, Monday 8-10-25, 9:01  
  From: VINCENT LEFEVRE  
  To: THOMAS DICKEY  
  Subj: Bug#1110769: xterm: segfault in ScrnWrit  
 XPost: linux.debian.maint.x 
 From: vincent@vinc17.net 
  
 On 2025-08-10 19:55:33 -0400, Thomas Dickey wrote: 
 > On Sun, Aug 10, 2025 at 07:37:18PM -0400, Thomas Dickey wrote: 
 > > On Mon, Aug 11, 2025 at 01:09:26AM +0200, Vincent Lefevre wrote: 
 > > > Package: xterm 
 > > > Version: 398-1 
 > > > Severity: important 
 > > > Tags: security upstream 
 > > > X-Debbugs-Cc: Debian Security Team  
 > > > 
 > > > I've just noticed that it is very easy to make xterm crash with 
 > > > some binary data: 
 > > > 
 > > >   /usr/bin/xterm -e 'printf "\\x9a\\x85\\x08"; sleep 2' 
 > > 
 > > It's not so easy (I don't see it breaking for me, and I don't see 
 > > an issue using asan2 or valgrind, in a recompile). 
  
 See my other messages about the needed settings. 
  
 > ...that was with Debian/testing and 13.  Actually current xterm is #401. 
  
 I was actually using xterm #401 for the initial crash, but I had to 
 go back to #398 for the backtrace with the symbols (#401 is just in 
 experimental, where xterm-dbgsym is not available). 
  
 I've just upgraded to #401 again. Now 
  
   /usr/bin/xterm -e 'printf "\\x9a\\x85\\x08"; sleep 2' 
  
 no longer crashes (ditto with -k8 and +k8). But 
  
   /usr/bin/xterm -e 'printf "\\eZ\\n\\x08"; sleep 2' 
  
 still crashes. 
  
 -- 
 Vincent Lef€vre  - Web:  
 100% accessible validated (X)HTML - Blog:  
 Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Lyon) 
  
 --- SoupGate-Win32 v1.05 
  * Origin: you cannot sedate... all the things you hate (1:229/2) 

[ list messages | list forums | previous | next | reply ]

search for:

328,116 visits
(c) 1994,  bbs@darkrealms.ca