Date: Thu, 11 Sep 2003 11:44:11 +0200 From: Igor Truszkowski <igort@intergate.pl> To: FreeBSD-gnats-submit@FreeBSD.org Subject: bin/56696: atacontrol core dump (sscanf on unintialized pointer) Message-ID: <E19xNzn-0002FV-Nh@escargot.linux.qx.pl> Resent-Message-ID: <200309110950.h8B9o9oW036950@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 56696 >Category: bin >Synopsis: atacontrol core dump (sscanf on unintialized pointer) >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu Sep 11 02:50:07 PDT 2003 >Closed-Date: >Last-Modified: >Originator: Igor Truszkowski >Release: FreeBSD 4.8-STABLE i386 >Organization: <Intergate sp. z o.o.> >Environment: System: FreeBSD escargot.linux.qx.pl 4.8-STABLE FreeBSD 4.8-STABLE #0: Tue Aug 5 13:24:45 CEST 2003 igor@escargot.truszkowski.one.pl:/vol1/obj/vol1/src/sys/ESCARGOT i386 Probably all architectures, tested on 4.8-STABLE and current RELENG_4 (4.9-PRERELEASE) on i386 arch. >Description: atacontrol in create mode (atacontrol create) does not check whether argv[2] and argv[3] are initialized before performing sscanf() on these pointers. >How-To-Repeat: just run `atacontrol create` or `atacontrol create RAID1` without additional arguments. >Fix: Problem is located near lines #306 and #320 in atacontrol.c. >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E19xNzn-0002FV-Nh>