On 20/05/2025 19:24, Paul Eggert wrote:
On 2025-05-20 10:15, Pádraig Brady wrote:
The attached patch addresses the issue here,
and includes a test verified to trigger with ASAN or valgrind available.
Thanks. A nit: the patch doesn't include the change to NEWS.
Good spot.
Fixed and pushed.
M
On 2025-05-20 10:15, Pádraig Brady wrote:
The attached patch addresses the issue here,
and includes a test verified to trigger with ASAN or valgrind available.
Thanks. A nit: the patch doesn't include the change to NEWS.
On 20/05/2025 16:15, Pádraig Brady wrote:
Indeed. I introduced this in coreutils 7.2 (2009).
One can repro on Fedora for e.g. with:
_POSIX2_VERSION=200809 LC_ALL=C valgrind sort +0.18446744073709551615R
poc_input.txt
==984625== Memcheck, a memory error detector
==984625== Using Valgrind-3.24.0
On 20/05/2025 10:31, Med Maatallah wrote:
Dear GNU Coreutils Maintainers,
I am reporting a heap buffer overflow vulnerability (CWE-122) I've
discovered in the GNU Coreutils sort utility. This issue affects the
traditional key specification syntax processing and leads to an
out-of-bounds read.
Vu
