oss-sec mailing list archives
Re: invalid free in GNU ed before 1.14.1
From: Florian Weimer <fweimer () redhat com>
Date: Thu, 12 Jan 2017 13:10:41 +0100
On 01/12/2017 12:14 PM, Hanno Böck wrote:
Hi, ed 1.14.1 fixes an invalid free, reported here: https://lists.gnu.org/archive/html/bug-ed/2017-01/msg00000.html Reproducer: echo -e "H\n?\{" | ed Found with afl. ed 1.14.1 didn't show any more issues with afl/asan fuzzing. Not sure if there's any scenario where ed is used with untrusted input.
There is red/ed -r. I wouldn't rely on it for security isolation, but the functionality does exist.
(Debian's APT uses ed scripts for package list diffs, but it doesn't use ed to apply them.)
Thanks, Florian
Current thread:
- invalid free in GNU ed before 1.14.1 Hanno Böck (Jan 12)
- Re: invalid free in GNU ed before 1.14.1 Florian Weimer (Jan 12)
- Re: invalid free in GNU ed before 1.14.1 Hanno Böck (Jan 12)
- Re: invalid free in GNU ed before 1.14.1 cve-assign (Jan 12)
- Re: invalid free in GNU ed before 1.14.1 Florian Weimer (Jan 12)