Ubuntu
muddleftpd package

Muddleftpd crashes due to buffer overflow after pristine installation

Bug #1365467 reported by Allard Hoeve
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
muddleftpd (Ubuntu)
New
Undecided
Unassigned

Bug Description

This sums it up:

root@xxxxx-dummytag-vagrant ~ # apt-get install muddleftpd
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following package was automatically installed and is no longer required:
  mysql-common
Use 'apt-get autoremove' to remove them.
The following NEW packages will be installed:
  muddleftpd
0 upgraded, 1 newly installed, 0 to remove and 1 not upgraded.
Need to get 0 B/197 kB of archives.
After this operation, 473 kB of additional disk space will be used.
Selecting previously unselected package muddleftpd.
(Reading database ... 28352 files and directories currently installed.)
Unpacking muddleftpd (from .../muddleftpd_1.3.13.1-4.2ubuntu3_amd64.deb) ...
Processing triggers for ureadahead ...
Processing triggers for man-db ...
Setting up muddleftpd (1.3.13.1-4.2ubuntu3) ...
update-alternatives: using /usr/bin/muddleftpd to provide /usr/bin/ftpd (ftpd) in auto mode.
Starting FTP server: *** buffer overflow detected ***: /usr/bin/muddleftpd terminated
======= Backtrace: =========
/lib/x86_64-linux-gnu/libc.so.6(__fortify_fail+0x37)[0x7fbd18e54e67]
/lib/x86_64-linux-gnu/libc.so.6(+0x109d60)[0x7fbd18e53d60]
/lib/x86_64-linux-gnu/libc.so.6(+0x109046)[0x7fbd18e53046]
/usr/bin/muddleftpd(shinfo_addtogrouplist+0x16c)[0x414a7c]
/usr/bin/muddleftpd(shinfo_setuparea+0x142)[0x414c02]
/usr/bin/muddleftpd(shinfo_init+0x99)[0x414ca9]
/usr/bin/muddleftpd(ftpd_init+0xe1)[0x412c81]
/usr/bin/muddleftpd(mainprog+0xbd)[0x4134dd]
/usr/bin/muddleftpd(main+0x147)[0x407b87]
/lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed)[0x7fbd18d6b76d]
/usr/bin/muddleftpd[0x407bb5]
======= Memory map: ========
00400000-00423000 r-xp 00000000 fc:01 13500454 /usr/bin/muddleftpd
00622000-00623000 r--p 00022000 fc:01 13500454 /usr/bin/muddleftpd
00623000-00624000 rw-p 00023000 fc:01 13500454 /usr/bin/muddleftpd
00624000-00625000 rw-p 00000000 00:00 0
0220a000-0222b000 rw-p 00000000 00:00 0 [heap]
7fbd182f8000-7fbd1830d000 r-xp 00000000 fc:01 13245061 /lib/x86_64-linux-gnu/libgcc_s.so.1
7fbd1830d000-7fbd1850c000 ---p 00015000 fc:01 13245061 /lib/x86_64-linux-gnu/libgcc_s.so.1
7fbd1850c000-7fbd1850d000 r--p 00014000 fc:01 13245061 /lib/x86_64-linux-gnu/libgcc_s.so.1
7fbd1850d000-7fbd1850e000 rw-p 00015000 fc:01 13245061 /lib/x86_64-linux-gnu/libgcc_s.so.1
7fbd1850e000-7fbd1851a000 r-xp 00000000 fc:01 13246980 /lib/x86_64-linux-gnu/libnss_files-2.15.so
7fbd1851a000-7fbd18719000 ---p 0000c000 fc:01 13246980 /lib/x86_64-linux-gnu/libnss_files-2.15.so
7fbd18719000-7fbd1871a000 r--p 0000b000 fc:01 13246980 /lib/x86_64-linux-gnu/libnss_files-2.15.so
7fbd1871a000-7fbd1871b000 rw-p 0000c000 fc:01 13246980 /lib/x86_64-linux-gnu/libnss_files-2.15.so
7fbd1871b000-7fbd18725000 r-xp 00000000 fc:01 13246984 /lib/x86_64-linux-gnu/libnss_nis-2.15.so
7fbd18725000-7fbd18925000 ---p 0000a000 fc:01 13246984 /lib/x86_64-linux-gnu/libnss_nis-2.15.so
7fbd18925000-7fbd18926000 r--p 0000a000 fc:01 13246984 /lib/x86_64-linux-gnu/libnss_nis-2.15.so
7fbd18926000-7fbd18927000 rw-p 0000b000 fc:01 13246984 /lib/x86_64-linux-gnu/libnss_nis-2.15.so
7fbd18927000-7fbd1893e000 r-xp 00000000 fc:01 13246997 /lib/x86_64-linux-gnu/libnsl-2.15.so
7fbd1893e000-7fbd18b3d000 ---p 00017000 fc:01 13246997 /lib/x86_64-linux-gnu/libnsl-2.15.so
7fbd18b3d000-7fbd18b3e000 r--p 00016000 fc:01 13246997 /lib/x86_64-linux-gnu/libnsl-2.15.so
7fbd18b3e000-7fbd18b3f000 rw-p 00017000 fc:01 13246997 /lib/x86_64-linux-gnu/libnsl-2.15.so
7fbd18b3f000-7fbd18b41000 rw-p 00000000 00:00 0
7fbd18b41000-7fbd18b49000 r-xp 00000000 fc:01 13246978 /lib/x86_64-linux-gnu/libnss_compat-2.15.so
7fbd18b49000-7fbd18d48000 ---p 00008000 fc:01 13246978 /lib/x86_64-linux-gnu/libnss_compat-2.15.so
7fbd18d48000-7fbd18d49000 r--p 00007000 fc:01 13246978 /lib/x86_64-linux-gnu/libnss_compat-2.15.so
7fbd18d49000-7fbd18d4a000 rw-p 00008000 fc:01 13246978 /lib/x86_64-linux-gnu/libnss_compat-2.15.so
7fbd18d4a000-7fbd18eff000 r-xp 00000000 fc:01 13246976 /lib/x86_64-linux-gnu/libc-2.15.so
7fbd18eff000-7fbd190fe000 ---p 001b5000 fc:01 13246976 /lib/x86_64-linux-gnu/libc-2.15.so
7fbd190fe000-7fbd19102000 r--p 001b4000 fc:01 13246976 /lib/x86_64-linux-gnu/libc-2.15.so
7fbd19102000-7fbd19104000 rw-p 001b8000 fc:01 13246976 /lib/x86_64-linux-gnu/libc-2.15.so
7fbd19104000-7fbd19109000 rw-p 00000000 00:00 0
7fbd19109000-7fbd19112000 r-xp 00000000 fc:01 13246977 /lib/x86_64-linux-gnu/libcrypt-2.15.so
7fbd19112000-7fbd19312000 ---p 00009000 fc:01 13246977 /lib/x86_64-linux-gnu/libcrypt-2.15.so
7fbd19312000-7fbd19313000 r--p 00009000 fc:01 13246977 /lib/x86_64-linux-gnu/libcrypt-2.15.so
7fbd19313000-7fbd19314000 rw-p 0000a000 fc:01 13246977 /lib/x86_64-linux-gnu/libcrypt-2.15.so
7fbd19314000-7fbd19342000 rw-p 00000000 00:00 0
7fbd19342000-7fbd19344000 r-xp 00000000 fc:01 13246991 /lib/x86_64-linux-gnu/libdl-2.15.so
7fbd19344000-7fbd19544000 ---p 00002000 fc:01 13246991 /lib/x86_64-linux-gnu/libdl-2.15.so
7fbd19544000-7fbd19545000 r--p 00002000 fc:01 13246991 /lib/x86_64-linux-gnu/libdl-2.15.so
7fbd19545000-7fbd19546000 rw-p 00003000 fc:01 13246991 /lib/x86_64-linux-gnu/libdl-2.15.so
7fbd19546000-7fbd19552000 r-xp 00000000 fc:01 13245044 /lib/x86_64-linux-gnu/libpam.so.0.83.0
7fbd19552000-7fbd19752000 ---p 0000c000 fc:01 13245044 /lib/x86_64-linux-gnu/libpam.so.0.83.0
7fbd19752000-7fbd19753000 r--p 0000c000 fc:01 13245044 /lib/x86_64-linux-gnu/libpam.so.0.83.0
7fbd19753000-7fbd19754000 rw-p 0000d000 fc:01 13245044 /lib/x86_64-linux-gnu/libpam.so.0.83.0
7fbd19754000-7fbd19758000 r-xp 00000000 fc:01 13245038 /lib/x86_64-linux-gnu/libcap.so.2.22
7fbd19758000-7fbd19957000 ---p 00004000 fc:01 13245038 /lib/x86_64-linux-gnu/libcap.so.2.22
7fbd19957000-7fbd19958000 r--p 00003000 fc:01 13245038 /lib/x86_64-linux-gnu/libcap.so.2.22
7fbd19958000-7fbd19959000 rw-p 00004000 fc:01 13245038 /lib/x86_64-linux-gnu/libcap.so.2.22
7fbd19959000-7fbd1997b000 r-xp 00000000 fc:01 13246988 /lib/x86_64-linux-gnu/ld-2.15.so
7fbd19a6f000-7fbd19b6f000 rw-s 00000000 00:04 0 /SYSV2f2a930e (deleted)
7fbd19b6f000-7fbd19b73000 rw-p 00000000 00:00 0
7fbd19b78000-7fbd19b79000 rw-p 00000000 00:00 0
7fbd19b79000-7fbd19b7b000 rw-p 00000000 00:00 0
7fbd19b7b000-7fbd19b7c000 r--p 00022000 fc:01 13246988 /lib/x86_64-linux-gnu/ld-2.15.so
7fbd19b7c000-7fbd19b7e000 rw-p 00023000 fc:01 13246988 /lib/x86_64-linux-gnu/ld-2.15.so
7fff2f3ce000-7fff2f3ef000 rw-p 00000000 00:00 0 [stack]
7fff2f3fe000-7fff2f400000 r-xp 00000000 00:00 0 [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]
muddleftpd error in file ftpwho.c line 602: No parent pid in inetd mode.
CANNOT RESUME. Goodbye
invoke-rc.d: initscript muddleftpd, action "start" failed.
dpkg: error processing muddleftpd (--configure):
 subprocess installed post-installation script returned error exit status 1
No apport report written because MaxReports is reached already
                                                              Errors were encountered while processing:
 muddleftpd
E: Sub-process /usr/bin/dpkg returned an error code (1)
root@xxxxx-dummytag-vagrant ~ #

System information: 12.04 using lxc Vagrant.

root@xxxxx-dummytag-vagrant ~ # uname -a
Linux xxxxx-dummytag-vagrant.nodes.hypernode.io 3.11.0-26-generic #45-Ubuntu SMP Tue Jul 15 04:02:06 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
root@xxxxx-dummytag-vagrant ~ #

root@xxxxx-dummytag-vagrant ~ # lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 12.04.3 LTS
Release: 12.04
Codename: precise
root@xxxxx-dummytag-vagrant ~ #

root@xxxxx-dummytag-vagrant ~ # apt-cache policy muddleftpd
muddleftpd:
  Installed: (none)
  Candidate: 1.3.13.1-4.2ubuntu3
...
root@xxxxx-dummytag-vagrant ~ #

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.