bin/56696: atacontrol core dump (sscanf on unintialized pointer)
Igor Truszkowski
igort at intergate.pl
Thu Sep 11 02:50:10 PDT 2003
>Number: 56696
>Category: bin
>Synopsis: atacontrol core dump (sscanf on unintialized pointer)
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Thu Sep 11 02:50:07 PDT 2003
>Closed-Date:
>Last-Modified:
>Originator: Igor Truszkowski
>Release: FreeBSD 4.8-STABLE i386
>Organization:
<Intergate sp. z o.o.>
>Environment:
System: FreeBSD escargot.linux.qx.pl 4.8-STABLE FreeBSD 4.8-STABLE #0: Tue Aug 5 13:24:45 CEST 2003 igor at escargot.truszkowski.one.pl:/vol1/obj/vol1/src/sys/ESCARGOT i386
Probably all architectures, tested on 4.8-STABLE and current RELENG_4
(4.9-PRERELEASE) on i386 arch.
>Description:
atacontrol in create mode (atacontrol create) does not check
whether argv[2] and argv[3] are initialized before performing
sscanf() on these pointers.
>How-To-Repeat:
just run `atacontrol create` or `atacontrol create RAID1`
without additional arguments.
>Fix:
Problem is located near lines #306 and #320 in atacontrol.c.
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list