Issue 7059 - UTF8StringNormalize will overrun a zero-length value
Summary: UTF8StringNormalize will overrun a zero-length value
Status: VERIFIED FIXED
Alias: None
Product: OpenLDAP
Classification: Unclassified
Component: slapd (show other issues)
Version: unspecified
Hardware: All All
: --- normal
Target Milestone: ---
Assignee: OpenLDAP project
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2011-10-06 21:46 UTC by Howard Chu
Modified: 2014-08-01 21:04 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.
Description Howard Chu 2011-10-06 21:46:22 UTC 
Full_Name: Howard Chu
Version: 2.4.x
OS: Linux
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (76.94.188.8)
Submitted by: hyc


According to the commit history this bug has been present since 2003-04-07
(commit 67d6b23d). A patch is in git master, but I'm continuing to investigate
and will update it further.
Comment 1 Howard Chu 2011-10-06 22:23:34 UTC 
changed notes
changed state Open to Test
moved from Incoming to Software Bugs
Comment 2 Quanah Gibson-Mount 2011-11-02 23:37:33 UTC 
changed notes
changed state Test to Release
Comment 3 Howard Chu 2011-11-22 22:30:04 UTC 
As Ralf Haferkamp noted, the real bug was introduced with 
postalAddressNormalize which was released in 2.4.10, so nothing earlier than 
that is affected. Also, this bug had no effect on most Linux installs because 
glibc malloc always allocates at least 16 bytes. The bug was only detected 
because I was running valgrind to check for leaks; there was no known crash 
related to this bug.
-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/
Comment 4 Quanah Gibson-Mount 2011-11-28 18:39:12 UTC 
changed notes
changed state Release to Closed
Comment 5 OpenLDAP project 2014-08-01 21:04:39 UTC 
fixed in master
fixed in RE24