Large mod-time values poison arhives, preventing restoration
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
dar (Ubuntu) |
Fix Released
|
Low
|
Unassigned |
Bug Description
Binary package hint: dar
If a file is backed up which has a very large (more than 32 bits?)
mod-time value, then dar segfaults when trying to restore the archive, or even list it.
This is a catastrophic problem, and a security problem,
because any user can create such a file which, when backed up, prevents access
to any files in the archive after that point in the archive.
Attached is a perl script which creates such a "poison" file.
DEMO:
Download create_
midir testdir
(cd testdir && create_
dar --fs-root `pwd`/testdir --create /tmp/dartest --verbose
dar --list /tmp/dartest # SEGFAULTs
ProblemType: Bug
Architecture: amd64
Date: Mon Apr 5 17:45:32 2010
DistroRelease: Ubuntu 9.10
NonfreeKernelMo
Package: dar 2.3.9-1ubuntu1
ProcEnviron:
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
ProcVersionSign
SourcePackage: dar
Uname: Linux 2.6.31-21-generic x86_64
visibility: | private → public |
Changed in dar (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → Low |
Hello,
this bug is fixed since in dar release 2.3.10 (April 9th, 2010)
Regards,
Denis Corbin.