Invalid memory access / read stack overflow when reading config with zero bytes

Nico Kadel-Garcia nkadel at gmail.com
Mon Mar 30 10:31:14 AEDT 2015


On Sun, Mar 29, 2015 at 6:36 PM, Hanno Böck <hanno at hboeck.de> wrote:
> On Mon, 30 Mar 2015 09:19:02 +1100 (AEDT)
> Damien Miller <djm at mindrot.org> wrote:
>
>> What version of OpenSSH is this?
>
> 6.8 portable on Linux.

There are a *lot* of Linux flavors. Which one?

>> Also, when reporting fuzzer-derived problems it really helps to
>> include the test-case.
>
> The "test case" is a one byte file containing a zero byte. But here it
> is :-)
>
> --
> Hanno Böck
> http://hboeck.de/
>
> mail/jabber: hanno at hboeck.de
> GPG: BBB51E42
>
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
>


More information about the openssh-unix-dev mailing list