From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 78698 invoked by alias); 25 Feb 2016 21:34:00 -0000 Mailing-List: contact libc-alpha-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: libc-alpha-owner@sourceware.org Received: (qmail 78675 invoked by uid 89); 25 Feb 2016 21:33:59 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-1.9 required=5.0 tests=BAYES_00,SPF_HELO_PASS autolearn=ham version=3.3.2 spammy=outoftree, Hx-languages-length:479, out-of-tree X-HELO: mx1.redhat.com Date: Thu, 25 Feb 2016 22:16:00 -0000 From: Arjun Shankar To: libc-alpha@sourceware.org Subject: [WIP] Test for CVE-2015-1781 -- glibc gethostbyname_r() buffer overflow with misaligned buffer Message-ID: <20160225223355.28ecccf2@zion> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="MP_/TMSv5PwcVBw_k_+uj2+XMZx" X-SW-Source: 2016-02/txt/msg00821.txt.bz2 --MP_/TMSv5PwcVBw_k_+uj2+XMZx Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Content-Disposition: inline Content-length: 382 The attached tarball contains an out-of-tree test used to validate the changes for CVE-2015-1781. It requires some complex setup which makes it unsuitable, at present, for inclusion in the test suite. However, downstream distributions have requested a reproducer, so I am posting this publicly. The test was written by Florian Weimer and reviewed by Carlos O'Donell. Cheers, Arjun --MP_/TMSv5PwcVBw_k_+uj2+XMZx Content-Type: application/gzip Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename=CVE-2015-1781.tar.gz Content-length: 3640 H4sICBowz1YAA0NWRS0yMDE1LTE3ODEudGFyAO1ae2/cNhL3v9anmHNwPTtn 7a60Lz+aAq7jtAZcJ/CjRXBXGFyJu2ItiQJJ2dkcDugHufty/SQ3Q0n7cJya ByQpDqcJ4l2Rw+HM/IZDaofHP574YS8Y+sF4L+hufBbqIY3HQ/oMxsPe6mdD G0E4GvVH4XjcH2308GEw2IDh51FnnUptmALYYDph+S1TH+N7qv9/lI7X8L84 OXr5w8mnnoMAHo0GH8M/xIca/2A8GIeIf38YDjeg96kVeYz+z/G/SoSGWCge GanmEMncMJFrYDlc5xNZ5jG1TcWsVMwImcN9IqIEIuyfcCg1j8FIT/FCybiM ODCYlNMpVyDvuJqm8h4lxZBwVoDIYZaKSdTxvKADF2UOZT0D9qQyYmkitYF7 YRIwCW96OzT/AyWmIuUdDwCs+vSEMn5BG6ziTBkxFZFgKVydvawEphL75BSO AE2VKtYdGsxJRs4yDrHkGnJpIGPGcLVr1RZm2Z6wO46mktWMxKIVYQeO4l8w gKDLTdRVXMv0rlIXGQspckNfgnDc6eG/wGpMdv/2679iMQPDtfHfy5x3fvv1 38SpOdoxtcYrXoFiXS7VLen7VpagE1mmMQmacYOavDy/RN4indfAoDv29/dg MkfhkDI1Qz95/Q4cy6wgN+Eo8vJkTlbfqA6hMajQELXvUbtOl3VkaZYaQtDf 78E+6ol6nJpaDYgULotqFCOdLM4N8pWHIS+zCVcatuvA0OI9t95lqZjlGc/N DiJmkdAFjwg58gU5IZYZBmMFEI2oHKMLmWtu5VQwxbzgeYyCQOYkhtiYihJh 0IGl4pUieqkKTgdTqeDd3uhmNDikMCar94cDCAgK7CM5or83Qvdc43zA3/Go NCKfwbPBLswXSNQwWMMxrlRZWMgyrjWb4SxKZlXUe9s4IUOIZ5xsruOYlanZ qay4Y+lMCfxSC8aPezSFGbIHFUZkmbfuYM8jB3/o0IWh9TKd2lVWalJ/InKG C11z8hB65o2Ibj3ymM5YmnJagBhuxFkJ2a3hzVfE4zrq4dDXOS54coWVb4Vk IhdZmdXgUGo1uDIjxZmd3CLTiOl4f3Tya+nB/r+acj/dHE/s/+NwsDj/9cfE FwyDUbv/fxHSXGE2OfA28e9EamHmBxB4m5oSlDYi0j7uYsjD0gPorbVHZVam +HTHD2DOtbfJ3xlKw7G/ZKp7MJP4JsEkEGNL6G1akVMWcZ+VBnM8sh7gJks5 19Ki/2C5eS46Y+mLYmT5N3GPmuE2O/MLqYxfcJUJcwD9cDza80fDYX/4kIXd SRGjJT7xjL3NjL3zy7jwKV/hQIxFbzNKlJQoZmvL28SdQdH2g0/12sDGxXEJ W+3Ov+xK5cw3IkPDdCREbX4hYjqiEPcdU11V5s2IxYJDFhydMIXbmD9Ly8an dUuca80jdKwSRcHj9c4Jx73Az99Vu+V6n+K45SqW+gUzSd2FNvkRK7SP25xP 3iBPlvk9Q6/Hvj1MWLRwA0qxN6iXKdpB0kzUyGke/Vs+r5uU0tz4ikxScrJQ xu4KqESzdzdxYRSuPpwTBaA21kWr/uxSeyfuPu/gF2+TYsW3Q3yWRwkqv+pV 3GMX4wg/GoMuxcD1o5Sz3GdxLGjTpUi2s1OXDRmtMYj9TMa88gV1EJApv+Op XQ64haVl/FA9e2a1+lG+JPDx2R6XUKnl4W4L7IKIGoaYGbbGAKfneC4N9kOM c/y/5cgYuDKGrox9V8aBK+PQlXHkyjh2ZdxzZdx3drg7NM7YBM7gBM7oBM7w BM74BM4ABc4IBc4QBc4Yhc4Yhe7rxxmj0Bmj0Bmj0Bmj0Bmj0Bmj0Bmj0Bmj vjNGfWeM+u5JzhmjvjNGfWeM+s4Y9Z0x6jtj1HfGaOCM0cAZo4EzRgP3ncgZ o4EzRgNnjAbOGA2cMRo4YzR0xmjojNHQGaOhM0ZD9+OCM0ZDZ4yGzhgNnTEa IkaKZ9LgSVrmRskU36Dqbz7P2SRtDvDV+xWdcBen1dUjZP15U7HVZ9Z6TMTx hcVhUMGzreXsT81U89VTNaOenKsZZid7/DhMh+DlaRhfLu7xHaQ6DuMrYPUS 1cE5mx48kKsD2OvYf481DzqD9ieiz0zrv/+s/IT9Ced44vefXi9c1H96w5Dq P8Ner9/+/vMliNZllUdWfmr5o5Vq6YvR+vr/oDr0SeZ4Yv0Pgv5oUf/th/T7 L34Ztev/S1D3OXxbziDYC/fGsL0WDTsHcEX1oAdBUdWDytzWcXhc13ttbfNY FnMlZolBSTuAgkbwSnEOl3Jq7qno9ooOCrb0tQunefSwhKuhoIKRrEqg351f wzGciYliat7xKt4HzTRmSlPoeopDW5CiuhdVUOkH00lpONU2GR5RqrpeJmMx nVMbaoOJjyYzXGV6deYzrjEvwnc854ql8KacpCKi0Wci4lR/ZKgtNeqEnDC3 Az9m7SFwQVU8Go+pVlPtL+wEzXy1yF2QCraZIRMUSFtJ3EG955Ay1K8Z+Tuu WFpsi+okO5EFr8qItr6bpnXdflqmuyQHmeGn06vvX19fwdH5W/jp6OLi6Pzq 7aHFmYrA/I5XokRWpAIlo3GK5WaO6pOEH04ujr/HIUffnp6dXr0lI16dXp2f XF7Cq9cXeGp+c3RxdXp8fXZ0AW+uL968vjzpAFxy3vjaevUxdy98TcXaTKJL Y26YSHXlgmU9vKrOKx5xcYcKMogwEv87NFOZz5Z3D9Y8e0hF+VyaXSrQ06Cv E2OKg273/v6+M8vLjlSzbloJ0t1v0LjnXc97FvOpyDncoKyby9fXF8cn3rP6 5Axf59zEk07yzUqTNnEqPmwTcr2JK7XeQHVbGVGbh6v5lVC4ZpmalbZUayTY GjoGB9llS+nYlkp5WxZ2/V1yPO7FHx1hq8vYZifBMLRYrBXiVxIArmX1cVFy OtXctuIZv6nxPxBTXZtAcdaJ+NUjCdt0lQLFRrsQJZiunz/Hh7sd7x84KWqP BlfN1rwXxHn3t+DnQ8+WkioTsNVIsW27wp93mj6bxdY6+9RJnjxqLCY1a+1s gPBclrMEdMEi65pM6EqMMJXaUKtTD3oBFUTbVpG/VnPSJACFQiWm21ulpndG qMpQf35f/j3f2q1H3VR9N9RX36HYAX8pZFVTul9g0WzUtXdCphL77zWwqamz 3ZSCZJl9RXVtxhieFRafImUrd3nCemRzgaOMkuqaBaOsurzpU99/0M2wv2j0 Q5nfQoarlt6oKQc3FzQoa9fmhJjkaHmaKkwwwCXhf5QaKr5RhTG16ZWG0lUN XNc/PrgsgXmBR3RTgvYQJdFf2WNQhL+HBabOEmXQXkfBm+Cfww+bn2PAlqlp 4geTuqpAOEa5j++VTXxgZnq4aGodMb9sPxi6TR+78BWpsdu4vtZ3t75f8VWl i+VSaqcukf7pBfSq75io8+2tB4K36qC5wi0DoV54ji+BvMdJLUD2wkjluUbV NdwO1xvss+KmVDn0Dr1/ti8SLbXUUksttdRSSy211FJLLbXUUksttdRSSy21 1FJLLbXUUksttdRSSy211FJLn43+A0Etwn0AUAAA --MP_/TMSv5PwcVBw_k_+uj2+XMZx--