locate crashes when searching a string with >= 10 characters enclosed in *
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
slocate (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: slocate
locate crashes when I search for a string with ten or more characters, enclosed in *, for example:
michael@
/home/michael/
/home/michael/
*** glibc detected *** locate: double free or corruption (fasttop): 0x08051778 ***
======= Backtrace: =========
/lib/tls/
/lib/tls/
locate[0x804af79]
locate[0x804aded]
/lib/tls/
locate[0x8049251]
======= Memory map: ========
08048000-0804f000 r-xp 00000000 08:07 56006 /usr/bin/slocate
0804f000-08050000 rw-p 00007000 08:07 56006 /usr/bin/slocate
08050000-08071000 rw-p 08050000 00:00 0 [heap]
b7c00000-b7c21000 rw-p b7c00000 00:00 0
b7c21000-b7d00000 ---p b7c21000 00:00 0
b7d83000-b7d8c000 r-xp 00000000 08:07 4987 /lib/tls/
b7d8c000-b7d8e000 rw-p 00008000 08:07 4987 /lib/tls/
b7d8e000-b7d96000 r-xp 00000000 08:07 6281 /lib/tls/
b7d96000-b7d98000 rw-p 00007000 08:07 6281 /lib/tls/
b7d98000-b7daa000 r-xp 00000000 08:07 4984 /lib/tls/
b7daa000-b7dac000 rw-p 00011000 08:07 4984 /lib/tls/
b7dac000-b7dae000 rw-p b7dac000 00:00 0
b7dae000-b7db5000 r-xp 00000000 08:07 4985 /lib/tls/
b7db5000-b7db7000 rw-p 00006000 08:07 4985 /lib/tls/
b7db7000-b7db8000 rw-p b7db7000 00:00 0
b7db8000-b7ee5000 r-xp 00000000 08:07 4977 /lib/tls/
b7ee5000-b7ee7000 r--p 0012c000 08:07 4977 /lib/tls/
b7ee7000-b7ee9000 rw-p 0012e000 08:07 4977 /lib/tls/
b7ee9000-b7eec000 rw-p b7ee9000 00:00 0
b7ef2000-b7efc000 r-xp 00000000 08:07 1254 /lib/libgcc_s.so.1
b7efc000-b7efd000 rw-p 00009000 08:07 1254 /lib/libgcc_s.so.1
b7efd000-b7f00000 rw-p b7efd000 00:00 0
b7f00000-b7f19000 r-xp 00000000 08:07 10713 /lib/ld-2.4.so
b7f19000-b7f1b000 rw-p 00018000 08:07 10713 /lib/ld-2.4.so
bff1f000-bff35000 rw-p bff1f000 00:00 0 [stack]
ffffe000-fffff000 ---p 00000000 00:00 0 [vdso]
Aborted
I use Ubuntu 6.10 with all updates until now.
I tested strings like *testtestet*, too, locate crashes too. But with one char less (*testteste*) locate doesn't crash.
I am unable to recreate the issue you have reported. I have tried searching for a ten character string between *'s and have not had locate crash. I am running Ubuntu 6.10 (edgy) and have slocate version 3.1-1 and libc6 version 2.4-1ubuntu12 installed. Could you provide the exact version numbers of the packages that you have installed? Also when you search for "*testtestet*" does that return anything?
Thanks,
Brian