Mailing List Archive

lack of input validation
While running clamscan --mbox:

LibClamAV Warning: Multipart MIME message contains no parts
Segmentation fault (core dumped)

# gdb -c clamscan.core /usr/local/bin/clamscan
GNU gdb 4.18 (FreeBSD)
Copyright 1998 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-unknown-freebsd"...(no debugging symbols
found)...
Core was generated by `clamscan'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /usr/local/lib/libclamav.so.1...(no debugging symbols
found)...done.
Reading symbols from /usr/lib/libz.so.2...(no debugging symbols found)...done.
Reading symbols from /usr/lib/libbz2.so.1...(no debugging symbols
found)...done.
Reading symbols from /usr/lib/libc_r.so.4...(no debugging symbols
found)...done.
Reading symbols from /usr/lib/libc.so.4...(no debugging symbols found)...done.
Reading symbols from /usr/libexec/ld-elf.so.1...(no debugging symbols
found)...done.
#0 0x2807be86 in messageGetEncoding () from /usr/local/lib/libclamav.so.1
(gdb) bt
#0 0x2807be86 in messageGetEncoding () from /usr/local/lib/libclamav.so.1
#1 0x2807c10d in messageToBlob () from /usr/local/lib/libclamav.so.1
#2 0x61206573 in ?? ()
Cannot access memory at address 0x6f685420.
(gdb)

# clamscan --version
clamscan / ClamAV version 0.60

# uname -a
FreeBSD xxx.nologin.org 4.8-RELEASE FreeBSD 4.8-RELEASE #0: Thu Apr 3
10:53:38 GMT 2003
root@freebsd-stable.sentex.ca:/usr/obj/usr/src/sys/GENERIC i386

Thanks,
-Chad
Re: lack of input validation [ In reply to ]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Saturday 02 Aug 2003 6:02 am, Chad Thunberg wrote:
> While running clamscan --mbox:
>
> LibClamAV Warning: Multipart MIME message contains no parts
> Segmentation fault (core dumped)

This has probably already been fixed, but to verify please send me the offendin e-mail and I'll see if I can reproduce the error.

- -Nigel


- --
Nigel Horne. Arranger, Composer, Typesetter.
NJH Music, Barnsley, UK. ICQ#20252325
njh@despammed.com http://www.bandsman.co.uk
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE/K19XhTUd3VwpF6IRAnEVAJ9lRynZdJf7WO2uF5RlTEBF6+hROgCdFsdd
1l9L1CnxZ6f/rkuPWnTYCqY=
=zyWs
-----END PGP SIGNATURE-----