Invalid memory access / read stack overflow when reading config with zero bytes

Nico Kadel-Garcia nkadel at gmail.com
Mon Mar 30 10:47:49 AEDT 2015


On Sun, Mar 29, 2015 at 7:34 PM, Damien Miller <djm at mindrot.org> wrote:
> On Sun, 29 Mar 2015, Nico Kadel-Garcia wrote:
>
>> On Sun, Mar 29, 2015 at 6:36 PM, Hanno B?ck <hanno at hboeck.de> wrote:
>> > On Mon, 30 Mar 2015 09:19:02 +1100 (AEDT)
>> > Damien Miller <djm at mindrot.org> wrote:
>> >
>> >> What version of OpenSSH is this?
>> >
>> > 6.8 portable on Linux.
>>
>> There are a *lot* of Linux flavors. Which one?
>
> That doesn't matter much if he's using pristine sources.
>
> -d

Diferent compiler, different glibc, different kernel, different
enabled compile time options, different configuration of SELinux can
all provide fascinating distinctions in behavior of the most
"pristine" of software. So it's a reasonable question.


More information about the openssh-unix-dev mailing list