Ubuntu
glibc package

Backport fix for Glibc bug #16743: "getaddrinfo uses uninitialized data when processing nscd answer"

Bug #1470965 reported by Daniel Mewes
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
glibc (Ubuntu)
New
Undecided
Unassigned

Bug Description

The version of eglibc that comes with Ubuntu 14.04 appears to be affected by Glibc bug #16743: https://sourceware.org/bugzilla/show_bug.cgi?id=16743

I'm not aware of a corresponding bug filed against eglibc, but we confirmed that eglibc in the Ubuntu 14.04 version has the same unpatched code and exhibits the faulty behavior.

We had one of our users run into this when running RethinkDB https://github.com/rethinkdb/rethinkdb/issues/4470 on Ubuntu 14.04 with the latest updates installed. The user had two entries in /etc/hosts for a certain hostname, one with an IPv4 and one with an IPv6 address. Calling `getaddrinfo` on that hostname with nscd running exhibited the problem (also see https://github.com/rethinkdb/rethinkdb/issues/4470#issuecomment-117868264 for additional testing code, though the Glibc bug report seems to have a simpler test case using `getent`).
Shutting down nscd provides a work-around, since the affected code path in eglibc isn't used in that case.

Is there a chance to backport the glibc fix to Ubuntu 14.04's eglibc?

We're happy to prepare and submit a patch if that helps.

Revision history for this message
Daniel Mewes (c-daniel-q) wrote :

The version of eglibc installed on the affected system:

> /lib/x86_64-linux-gnu/libc.so.6
GNU C Library (Ubuntu EGLIBC 2.19-0ubuntu6.6) stable release version 2.19

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.