Opened 8 years ago

Closed 8 years ago

Last modified 6 years ago

#8732 closed enhancement (overcomebyevents)

ed-1.14 (hold until next release)

Reported by: Douglas R. Reno Owned by: blfs-book@…
Priority: normal Milestone: hold
Component: BOOK Version: SVN
Severity: normal Keywords:
Cc:

Description

New minor version

Change History (5)

comment:1 by Pierre Labastie, 8 years ago

Milestone: 8.0hold
Summary: ed-1.14ed-1.14 (hold until next release)

From this message (http://lists.gnu.org/archive/html/bug-ed/2017-01/msg00001.html):

Hi Hanno,

Hanno Böck wrote:

    ed can be crashed with some malformed commands:
    echo -e "H\n?\{" | ed


Thank you very much for reporting this.


    The bug seems to be a call of free on a nonallocated pointer. The bug
    was found with the fuzzing tool american fuzzy lop in ed 1.14.


Yes, it was a stupid overlook. I changed a malloc'd buffer for a static one and forgot to remove the corresponding 'free'. I'll release a corrected version shortly.



Best regards,
Antonio.

I'd say: wait for 1.15

comment:2 by Douglas R. Reno, 8 years ago

Agreed.

comment:3 by Douglas R. Reno, 8 years ago

Resolution: overcomebyevents
Status: newclosed

Bruce just updated to 1.14.1.

comment:4 by bdubbs@…, 7 years ago

Milestone: holdy-hold

Milestone renamed

comment:5 by Bruce Dubbs, 6 years ago

Milestone: y-holdhold

Milestone renamed

Note: See TracTickets for help on using tickets.