[pcre-dev] [Bug 1898] PCRE2 - Invalid memory access

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMadmin at <-
admin at ->
Delete this message
Author: admin
Date:  
To: pcre-dev
Subject: [pcre-dev] [Bug 1898] PCRE2 - Invalid memory access
https://bugs.exim.org/show_bug.cgi?id=1898

Petr Pisar <ppisar@???> changed: 

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |ppisar@???


--- Comment #1 from Petr Pisar <ppisar@???> ---
10.21 is fine. The first commit that introduced this bug is:

commit 6bf32bbce61a414df982e36df8d78d88df4602f7
Author: ph10 <ph10@6239d852-aaf2-0410-a92c-79f79f948069>
Date: Sun Jan 31 19:14:15 2016 +0000 

    Don't set PCRE2_NO_AUTO_CAPTURE when REG_NOSUB is passed to regcomp().



    git-svn-id: svn://vcs.exim.org/pcre2/code/trunk@482
6239d852-aaf2-0410-a92c-79f79f948069


I.e. SVN revision 482.

The back trace is: 

Program received signal SIGSEGV, Segmentation fault.
strlen () at ../sysdeps/x86_64/strlen.S:106
106             movdqu  (%rax), %xmm4
Missing separate debuginfos, use: dnf debuginfo-install
ncurses-libs-6.0-6.20160709.fc24.x86_64 readline-6.3-8.fc24.x86_64
(gdb) info registers 
rax            0x65411f 6635807
rbx            0x1      1
rcx            0x11f    287
rdx            0xf      15
rsi            0x65411f 6635807
rdi            0x65411f 6635807
rbp            0x7fffffffd6e0   0x7fffffffd6e0
rsp            0x7fffffffd688   0x7fffffffd688
r8             0x0      0
r9             0x7ffff6d793d0   140737334711248
r10            0x309    777
r11            0x7ffff6cad270   140737333875312
r12            0x404ba0 4213664
r13            0x7fffffffe2b0   140737488347824
r14            0x0      0
r15            0x0      0
rip            0x7ffff6cad296   0x7ffff6cad296 <strlen+38>
eflags         0x10287  [ CF PF SF IF RF ]
cs             0x33     51
ss             0x2b     43
ds             0x0      0
es             0x0      0
fs             0x0      0
gs             0x0      0
(gdb) bt full
#0  strlen () at ../sysdeps/x86_64/strlen.S:106
No locals.
#1  0x00007ffff76fef19 in regexec (preg=0x623cc0 <preg>, string=0x65411f
<error: Cannot access memory at address 0x65411f>, nmatch=0, pmatch=0x642fc0,
eflags=0)
    at src/pcre2posix.c:294
        rc = 32767
        so = 0
        eo = 0
        options = 0
        md = 0x63ef30
#2  0x00000000004143c1 in process_data () at src/pcre2test.c:5828
        rc = 0
        eflags = 0
        pmatch = 0x642fc0
        msg = 0x41e508 "** Ignored with POSIX interface:"
        len = 0
        ulen = 0
        gmatched = 0
        c = 1
        k = 2
        g_notempty = 0
        p = 0x624012 "offset=70000"
        pp = 0x642faf ""
        start_rep = 0x0
        needlen = 15
        use_dat_context = 0x7ffff7de81c3 <_dl_fixup+195>
        utf = 0
        q8 = 0x63efb0 ""
        q16 = 0x0
        q32 = 0x0
#3  0x0000000000419bad in main (argc=3, argv=0x7fffffffe2b8) at
src/pcre2test.c:7352
        p = 0x624010 "\\=offset=70000"
        rc = 0
        expectdata = 1
        yield = 0
        op = 1
        stack_size = 0
        notdone = 1
        quiet = 0
        showtotaltimes = 0
        skipping = 0
        arg_subject = 0x0
        arg_pattern = 0x0


--
You are receiving this mail because:
You are on the CC list for the bug.
This message was posted to the following mailing lists:
Pcre-dev
Mailing List Info | Nearby Messages		<-[pcre-dev] [Bug 1889] PCRE2 Stack Buffer Overflow Vulnerability[pcre-dev] [Bug 1901] New: PCRE2 10.23-RC1 Stack Buffer Overflow Vulnerability->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)