terminated on stack smashing detected message

Same error here. Worked in intrepid, broken in jaunty. Nominating for jaunty since the program doesn't work at all now.

I can confirm that this is still an issue in Jaunty, reported from linux mint Gloria: http://forums.linuxmint.com/viewtopic.php?f=166&t=27666

chattr:
"if I ' apt-get remove gmemusage ' and grab the Debian testing/squeeze 0.2-11 i386 package and install that package via ' dpkg -i ', then gmemusage runs fine."

Confirmed, installing the squeeze deb fixes the problem for me as well in jaunty. Curiously, building from the squeeze tarball with patches added still crashes, so I'm not sure what they've changed.

Building the hardy package on hardy with dpkg-buildpackage also results in a binary that gives the stack-smashing error (though the hardy binary package worked fine).

Building with -fno-stack-protector as part of CFLAGS makes it ignore the stack smashing, and the program works again.

My guess (I don't know how to check this) is that the default setting for -fno-stack-protector changed on the machines used to produce jaunty binary packages, relative to the machines used for intrepid packages (but that it didn't change on hardy or intrepid themselves).

But I've found the cause of the problem. gmemusage assumes that the names read from /proc/*/status can fit in 14 characters (including the null), but some of them are actually 15 characters (so 16 with the null). I'm attaching a patch. I've separated the number out into a #define in case it changes again. Is this size documented anywhere, or set in any system include file?

As long as I was making a patch I also fixed a couple of warnings and some unsafe behavior (changed strcpy to strncpy).

Here's a better patch: I fixed one more strcpy and one more warning, and added a field width in the sscanf for procName.

Would a debdiff help in getting this patch accepted? I've never made a debdiff but I can try.

Thanks for your work on it.
Yes, a debdiff is necessary if you want a sponsor. You can have more details on https://wiki.ubuntu.com/MOTU/Contributing
Also, it would be nice to post this patch to Debian also, they should have the same problem, and we can keep packages in sync.

I unsubscribe ubuntu-universe-sponsors for now, please re-subscribe when you have a debdiff.

This is still an issue in Lucid. I just installed version 0.2-11 in Lucid and got the same error.

Hi,

Thanks for working on this. I have a couple of comments though:

- The scope of the patch seems to expand beyond the original bug. Whilst it's perfectly ok for you to fix the additional issues, would you mind splitting those changes in to a separate patch? (I'm referring to the cast you added in draw_window and the prototype change to main() ).

- You hardcode "%15s" in the prototype for sscanf, when you use a constant everywhere else. Why not do something like this?

     char *format ;
     asprintf ( &format , "%%*s %%%ds" , PROCNAMELEN - 1 ) ;
     sscanf ( buf , format , procName ) ;
     free ( format ) ;

(Note that this doesn't make sure asprintf succeeded, which isn't good - but it doesn't look like this application checks that any other call succeeds either, so I'm not sure that matters so much here).

Let me know what you think, but I'd certainly sponsor this once you've addressed the first point

There is a typo in my last comment. I should have said "You hardcode "%15s" in the format string for sscanf"

I've updated the debdiff with Chris's suggestions, and fixed up the changelog to use LP-style bug numbering. Thanks for the work on this, I'll get it uploaded shortly.

This bug was fixed in the package gmemusage - 0.2-11ubuntu1

---------------
gmemusage (0.2-11ubuntu1) oneiric; urgency=low

  * Add debian/patches/30_stacksmash2.patch: fix stack smashing crash on
    startup (LP: #370735).
 -- Akkana Peck <email address hidden> Wed, 01 Jun 2011 10:02:33 -0700

natty has seen the end of its life and is no longer receiving any updates. Marking the natty task for this ticket as "Won't Fix".