cURL
Haxx ad
libcurl

curl's project page on SourceForge.net

Sponsors:
Haxx

cURL > Mailing List > Monthly Index > Single Mail

curl-tracker Archives

[curl:bugs] Re: #1179 Buffer Overflow Detection

From: Joshua Hickman <joshuaoshickman_at_users.sf.net>
Date: Tue, 08 Jan 2013 18:45:13 +0000

Is there any way of using libcurl that would circumvent that issue in
general? I'd be cool with submitting a patch to the ruby library I'm
using.

thanks,
orion

On Tue, Jan 8, 2013 at 10:17 AM, Daniel Stenberg <bagder_at_users.sf.net> wrote:
> FD_SETSIZE

---
** [bugs:#1179] Buffer Overflow Detection**
**Status:** open
**Labels:** buffer overflow 
**Created:** Tue Jan 08, 2013 05:26 PM UTC by Joshua Hickman
**Last Updated:** Tue Jan 08, 2013 06:17 PM UTC
**Owner:** Daniel Stenberg
I'm running typheous (which uses libcurl) on JRuby via the FFI. I got this curious stack trace:
*** buffer overflow detected ***: /usr/bin/java terminated
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x37)[0x7f8bdd5b3007]
/lib/x86_64-linux-gnu/libc.so.6(+0x107f00)[0x7f8bdd5b1f00]
/lib/x86_64-linux-gnu/libc.so.6(+0x108fbe)[0x7f8bdd5b2fbe]
/usr/lib/x86_64-linux-gnu/libcurl.so.4(curl_multi_fdset+0xeb)[0x7f8b99b9133b]
Any help you can provide would be phenomenal -- I'm having a hard time reliably reproducing (it took hours on a production box with >100 requests a second to trigger this), but I'll keep this ticket up to date with any further information I have. 
---
Sent from sourceforge.net because you indicated interest in <https://sourceforge.net/p/curl/bugs/1179/>
To unsubscribe from further messages, please visit <https://sourceforge.net/auth/prefs/>
Received on 2013-01-08

These mail archives are generated by hypermail.

donate! Page updated January 05, 2012.
web site info

File upload with ASP.NET