Vulnerability Development mailing list archives

Re: Buffer overflow in awk

From: "Walter Jr." <walterjr () pr gov br>
Date: Fri, 15 Mar 2002 13:30:22 -0300

So does conectiva  2.2.13-9cl , awk 3.0.3

From: "Max" <flux9 () 101freeway net>

I can reproduce this on Slackware 8.0, but it takes 8177 char's to
segfault.

From: keoki [mailto:keoki () techie com] 

A buffer overflow exist in awk(named awk on most 
systems, but actualy is gawk/GNU awk) when calling

the -f option, to include an awk script, and supplying a 
filename with a buffer length of 1022 and up. 
[root@neural keoki]# awk -f `perl -e 'print "A" x 1022'` 
awk: fatal error: internal error 
Abort (core dumped)

Current thread:

Buffer overflow in awk keoki (Mar 14)
- RE: Buffer overflow in awk Max (Mar 15)
  - Re: Buffer overflow in awk Walter Jr. (Mar 15)
    - Re: Buffer overflow in awk Charles-Edouard Ruault (Mar 15)
    - Re: Buffer overflow in awk JW (Mar 26)
- Re: Buffer overflow in awk Jason Stover (Mar 15)
- Re: Buffer overflow in awk wu2ftpd-ovich (Mar 15)
- Re: Buffer overflow in awk Enphourell Security (Mar 19)
- <Possible follow-ups>
- RE: Buffer overflow in awk Mike Batchelder (Mar 15)
  - Re: Buffer overflow in awk sekure (Mar 15)
    - Re: Buffer overflow in awk Kurt Seifried (Mar 15)
    - Re: Buffer overflow in awk Pavel Kankovsky (Mar 17)
    - Re: Buffer overflow in awk Jeff Fields (Mar 19)

(Thread continues...)