zip fails when filenames contain unicode characters
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
zip (Ubuntu) | Status tracked in Plucky | |||||
Noble |
Fix Released
|
Undecided
|
Shengjing Zhu | |||
Oracular |
Fix Released
|
Undecided
|
Shengjing Zhu | |||
Plucky |
Fix Released
|
High
|
Shengjing Zhu |
Bug Description
[ Impact ]
* zip in noble is built with _FORTIFY_SOURCE=3 and the code is bug with buffer overflow when filename contains non ascii characters. So it crashes at runtime.
[ Test Plan ]
* install zip from proposed
* run following commands:
touch ä
zip x.zip ä
* It shouldn't crash.
[ Where problems could occur ]
* The patch has been included in fedora 40 and tested there.
* If the patch is still wrong to calculate the buffer size, zip continues to crash.
[ Other Info ]
* None
[Original description]
Steps to reproduce: command line
$ touch ä
$ zip x.zip ä
will result in
> *** buffer overflow detected ***: terminated
>
>
> zip error: Interrupted (aborting)
cf. https:/
ProblemType: Bug
DistroRelease: Ubuntu 24.04
Package: zip 3.0-13build1
Uname: Linux 6.8.6-060806-
ApportVersion: 2.28.1-0ubuntu1
Architecture: amd64
CasperMD5CheckR
CurrentDesktop: XFCE
Date: Fri Apr 19 12:34:09 2024
SourcePackage: zip
UpgradeStatus: No upgrade log present (probably fresh install)
Related branches
- Simon Quigley (community): Approve
- git-ubuntu import: Pending requested
-
Diff: 73 lines (+39/-0)5 files modifieddebian/changelog (+8/-0)
debian/patches/13-buffer-overflow.patch (+19/-0)
debian/patches/series (+1/-0)
debian/tests/control (+1/-0)
debian/tests/smoke (+10/-0)
- Simon Quigley (community): Approve
- git-ubuntu import: Pending requested
-
Diff: 73 lines (+39/-0)5 files modifieddebian/changelog (+8/-0)
debian/patches/14-buffer-overflow.patch (+19/-0)
debian/patches/series (+1/-0)
debian/tests/control (+1/-0)
debian/tests/smoke (+10/-0)
- Simon Quigley (community): Needs Fixing
- git-ubuntu import: Pending requested
-
Diff: 13 lines (+4/-0) (has conflicts)1 file modifieddebian/changelog (+4/-0)
- Simon Quigley (community): Needs Fixing
- git-ubuntu import: Pending requested
-
Diff: 13 lines (+4/-0) (has conflicts)1 file modifieddebian/changelog (+4/-0)
- Simon Quigley (community): Approve
- git-ubuntu import: Pending requested
-
Diff: 73 lines (+39/-0)5 files modifieddebian/changelog (+8/-0)
debian/patches/14-buffer-overflow.patch (+19/-0)
debian/patches/series (+1/-0)
debian/tests/control (+1/-0)
debian/tests/smoke (+10/-0)
- Lukas Märdian (community): Approve
-
Diff: 67 lines (+33/-1)4 files modifieddebian/changelog (+7/-0)
debian/control (+2/-1)
debian/patches/13-buffer-overflow.patch (+23/-0)
debian/patches/series (+1/-0)
- Lukas Märdian (community): Approve
-
Diff: 53 lines (+31/-0)3 files modifieddebian/changelog (+7/-0)
debian/patches/12-buffer-overflow.patch (+23/-0)
debian/patches/series (+1/-0)
- Lukas Märdian (community): Approve
-
Diff: 66 lines (+32/-1)4 files modifieddebian/changelog (+6/-0)
debian/control (+2/-1)
debian/patches/13-buffer-overflow.patch (+23/-0)
debian/patches/series (+1/-0)
Changed in zip (Ubuntu): | |
importance: | Undecided → High |
Changed in zip (Ubuntu Plucky): | |
assignee: | nobody → Shengjing Zhu (zhsj) |
Changed in zip (Ubuntu Plucky): | |
status: | Triaged → In Progress |
description: | updated |
Changed in zip (Ubuntu Noble): | |
status: | Confirmed → In Progress |
Changed in zip (Ubuntu Oracular): | |
status: | Confirmed → In Progress |
Changed in zip (Ubuntu Noble): | |
assignee: | nobody → Shengjing Zhu (zhsj) |
Changed in zip (Ubuntu Oracular): | |
assignee: | nobody → Shengjing Zhu (zhsj) |
tags: |
added: verification-done-noble removed: verification-needed-noble |
Status changed to 'Confirmed' because the bug affects multiple users.