buffer overflow detected for /usr/lib/hobbit/server/bin/bb-rep.cgi terminated
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xymon (Ubuntu) |
Opinion
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: xymon
To whom it may concern
There appears to be a bug with Xymon's Availability report. I started doing straces and the I found
14:29:39.537196 mkdir("
14:29:39.537344 open("/dev/tty", O_RDWR|
14:29:39.537417 writev(2, [{"*** ", 4}, {"buffer overflow detected", 24}, {" ***: ", 6}, {"/usr/
When I got the strace I start Googling the problem, it appears to be a known / common problem
http://
http://
http://
Below is the output in /var/log/
-------
*** buffer overflow detected ***: /usr/lib/
======= Backtrace: =========
/lib/libc.
/lib/libc.
/lib/libc.
/lib/libc.
/lib/libc.
/lib/libc.
/lib/libc.
/usr/lib/
/lib/libc.
/usr/lib/
======= Memory map: ========
00400000-0041b000 r-xp 00000000 fb:00 269547 /usr/lib/
0061a000-0061b000 r--p 0001a000 fb:00 269547 /usr/lib/
0061b000-0061c000 rw-p 0001b000 fb:00 269547 /usr/lib/
0061c000-0061d000 rw-p 00000000 00:00 0
00e81000-00ea2000 rw-p 00000000 00:00 0 [heap]
7ff4275e0000-
7ff4275f6000-
7ff4277f5000-
7ff4277f6000-
7ff4277f7000-
7ff42780f000-
7ff427a0e000-
7ff427a0f000-
7ff427a10000-
7ff427a14000-
7ff427b8e000-
7ff427d8d000-
7ff427d91000-
7ff427d92000-
7ff427d97000-
7ff427d9e000-
7ff427f9d000-
7ff427f9e000-
7ff427f9f000-
7ff427fcc000-
7ff4281cb000-
7ff4281cc000-
7ff4281cd000-
7ff4283de000-
7ff4283e9000-
7ff4283ec000-
7ff4283ed000-
7ff4283ee000-
7fff294db000-
7fff295e8000-
ffffffffff60000
ProblemType: Bug
DistroRelease: Ubuntu 10.10
Package: xymon (not installed)
ProcVersionSign
Uname: Linux 2.6.35-25-generic i686
NonfreeKernelMo
Architecture: i386
Date: Tue Jan 25 14:56:07 2011
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release i386 (20100429)
ProcEnviron:
LANG=en_ZA.utf8
SHELL=/bin/bash
SourcePackage: xymon
Changed in xymon (Ubuntu): | |
status: | New → Opinion |
After debugging together with some colleagues, I found a solution for this problem.
In the source code of report.c and snapshot.c (in the map ./web) there is a declaration in the main function: "char htmldelim[20];". In the same main function we can find: " sprintf(htmldelim, "xymonrep-%u-%u", (int)getpid(), (unsigned int)getcurrentt ime(NULL) );"
Because the size of "char htmldelim[20];" is not sufficient enough this process will crash. I changed this char value into 100 and after a "make && make install" command the issue seems to be resolved!
Kind Regards,
Rolf Biesbroek
University Twente