Bugtraq mailing list archives

Re: xterm segfaults from environment variables - too obvious

From: abelits () PHOBOS ILLTEL DENVER CO US (Alex Belits)
Date: Tue, 11 Mar 1997 02:50:36 -0800


On Tue, 11 Mar 1997, David Luyer wrote:

Firstly, the bug.  What a joke.  A segfault from xterm this easily.

Putting a large string into in LC_CTYPE or LANG will cause xterm from
Debian-1.2.8 (the latest and supposedly stable and secure) Linux to
segfault.


  This bug is fixed for x86 unices in XFree86 3.2 and for others in
X11R6.3. Or at least documentation and developers claim so. I have tested
it on XFree86 3.2, and it doesn't segfault xterm (while test program, of
course, gets its SIGSEGV). What versions of X and libc are in
Debian-1.2.8?

--
Alex

Current thread:

Re: Bug in connect() ? Frank Hofmann (Mar 07)
- Re: Bug in connect() ? Frank Hofmann (Mar 10)
- Lynx/MSIE denial-of-service Doctor Who (Mar 10)
  - Re: Lynx/MSIE denial-of-service Christopher Blizzard (Mar 10)
  - SGI Security Advisory 19970301-01-P - IRIX 5.x and 6.x fsdump Aleph One (Mar 10)
  - xterm segfaults from environment variables - too obvious David Luyer (Mar 10)
    - Secuirty Hole In Older Perl Installs... Ken Robson (Mar 11)
    - Re: xterm segfaults from environment variables - too obvious Alex Belits (Mar 11)
    - Division of Privilege (DoP) - Potential Security Vulnerability Aleph One (Mar 11)
    - runpipe v1.2 with security hole fix Aleph One (Mar 11)