buffer overflow crash in libgcrypt when open files > 1024
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libgcrypt11 (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
I am running JBoss with my open files set to > 1024 and when one of my Java classes tries to access the printers it talks to libcups which uses libgnutls which uses libgcrypt. However, libgcrypt has some code that is calling FD_SET on a file descriptor but that gets reported as a buffer overflow because the file descriptor has a value of 1053 which is greater than the FD_SETSIZE define of 1024. This bug was fixed in libgcrypt in September 2011 but does not appear in the patched version of libgcrypt11 1.5.0 in Ubuntu 12.04.
The git commit in libgcrypt that fixes the problem is 061b11de60415e2
I submitted the crash (I think it's not entirely clear to me it did anything) using ubuntu-bug which I guess went to the whoopsie database or something.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: libgcrypt11 1.5.0-3ubuntu0.1
ProcVersionSign
Uname: Linux 3.2.0-27-generic x86_64
ApportVersion: 2.0.1-0ubuntu11
Architecture: amd64
Date: Wed Nov 28 17:57:12 2012
InstallationMedia: Ubuntu-Server 12.04 LTS "Precise Pangolin" - Release amd64 (20120424.1)
MarkForUpload: True
ProcEnviron:
LANGUAGE=en_US:
TERM=xterm-
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: libgcrypt11
UpgradeStatus: No upgrade log present (probably fresh install)
The linked patch looks good to me.