This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

[Bug string/22603] New: ia64 memchr overflows internal pointer check

From: "adhemerval.zanella at linaro dot org" <sourceware-bugzilla at sourceware dot org>
To: glibc-bugs at sourceware dot org
Date: Thu, 14 Dec 2017 11:01:46 +0000
Subject: [Bug string/22603] New: ia64 memchr overflows internal pointer check
Auto-submitted: auto-generated

https://sourceware.org/bugzilla/show_bug.cgi?id=22603

            Bug ID: 22603
           Summary: ia64 memchr overflows internal pointer check
           Product: glibc
           Version: 2.25
            Status: NEW
          Severity: normal
          Priority: P2
         Component: string
          Assignee: unassigned at sourceware dot org
          Reporter: adhemerval.zanella at linaro dot org
  Target Milestone: ---

Similar to BZ#20791 and BZ#21014 IA64 memchr pointer manipulation overflows
when a large size is used. It is shown in rawmemchr tests (now that rawmemchr
is implemented by calling memchr/strlen):

stratcliff:

rawmemchr flunked for outer = 16376, middle = 16376
rawmemchr flunked for outer = 16376, middle = 16377
rawmemchr flunked for outer = 16376, middle = 16378
[...]

test-rawmemchr:

/home/azanella/glibc/glibc-git-build/string/test-rawmemchr: Iteration 668 -
wrong result in function rawmemchr (14, 130, 498, 491) (nil) !=
0x20000000002ebff9, p 0x20000000002ebe00
/home/azanella/glibc/glibc-git-build/string/test-rawmemchr: Iteration 968 -
wrong result in function rawmemchr (12, 201, 494, 485) (nil) !=
0x20000000002ebff1, p 0x20000000002ebe00
/home/azanella/glibc/glibc-git-build/string/test-rawmemchr: Iteration 1112 -
wrong result in function rawmemchr (7, 42, 504, 503) (nil) !=
0x20000000002ebffe, p 0x20000000002ebe00
/home/azanella/glibc/glibc-git-build/string/test-rawmemchr: Iteration 2412 -
wrong result in function rawmemchr (0, 21, 510, 509) (nil) !=
0x20000000002ebffd, p 0x20000000002ebe00
/home/azanella/glibc/glibc-git-build/string/test-rawmemchr: Iteration 2647 -
wrong result in function rawmemchr (15, 129, 486, 483) (nil) !=
0x20000000002ebff2, p 0x20000000002ebe00
/home/azanella/glibc/glibc-git-build/string/test-rawmemchr: Iteration 3135 -
wrong result in function rawmemchr (6, 171, 504, 496) (nil) !=
0x20000000002ebff6, p 0x20000000002ebe00
[...]

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Follow-Ups:
- [Bug string/22603] ia64 memchr overflows internal pointer check
  - From: adhemerval.zanella at linaro dot org
- [Bug string/22603] ia64 memchr overflows internal pointer check
  - From: fweimer at redhat dot com
- [Bug string/22603] ia64 memchr overflows internal pointer check
  - From: joseph at codesourcery dot com
- [Bug string/22603] ia64 memchr overflows internal pointer check
  - From: adhemerval.zanella at linaro dot org
- [Bug string/22603] ia64 memchr overflows internal pointer check
  - From: cvs-commit at gcc dot gnu.org
- [Bug string/22603] ia64 memchr overflows internal pointer check
  - From: adhemerval.zanella at linaro dot org

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]