From owner-freebsd-bugs@FreeBSD.ORG Sun May 24 19:20:03 2009 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6E0101065674 for ; Sun, 24 May 2009 19:20:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 465018FC1B for ; Sun, 24 May 2009 19:20:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n4OJK3fI039562 for ; Sun, 24 May 2009 19:20:03 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n4OJK3Mx039560; Sun, 24 May 2009 19:20:03 GMT (envelope-from gnats) Resent-Date: Sun, 24 May 2009 19:20:03 GMT Resent-Message-Id: <200905241920.n4OJK3Mx039560@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Steven Hartlanbd & Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CFDB9106564A for ; Sun, 24 May 2009 19:13:21 +0000 (UTC) (envelope-from root@ftp0.uk.multiplay.co.uk) Received: from ftp1.multiplay.co.uk (ftp0.uk.multiplay.co.uk [85.236.96.13]) by mx1.freebsd.org (Postfix) with ESMTP id 72DE48FC29 for ; Sun, 24 May 2009 19:13:21 +0000 (UTC) (envelope-from root@ftp0.uk.multiplay.co.uk) Received: from ftp1.multiplay.co.uk (localhost.multiplay.co.uk [127.0.0.1]) by ftp1.multiplay.co.uk (8.14.3/8.14.3) with ESMTP id n4OJDKEw001069 for ; Sun, 24 May 2009 20:13:20 +0100 (BST) (envelope-from root@ftp0.uk.multiplay.co.uk) Received: (from root@localhost) by ftp1.multiplay.co.uk (8.14.3/8.14.3/Submit) id n4OJDKvX001068; Sun, 24 May 2009 20:13:20 +0100 (BST) (envelope-from root) Message-Id: <200905241913.n4OJDKvX001068@ftp1.multiplay.co.uk> Date: Sun, 24 May 2009 20:13:20 +0100 (BST) From: Steven Hartland & To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Cc: Subject: bin/134916: truss off by one error on syscall check X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Steven Hartlanbd & List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 May 2009 19:20:03 -0000 >Number: 134916 >Category: bin >Synopsis: truss off by one error on syscall check >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Sun May 24 19:20:02 UTC 2009 >Closed-Date: >Last-Modified: >Originator: Steven Hartland & >Release: FreeBSD 7.2-RELEASE i386 >Organization: Multiplay >Environment: System: FreeBSD ftp1.multiplay.co.uk 7.2-RELEASE FreeBSD 7.2-RELEASE #0: Sun May 24 19:21:08 BST 2009 root@ftp1.multiplay.co.uk:/usr/obj/usr/src/sys/MULTIPLAY i386 >Description: Truss has an invalid bounds check on syscalls which can result in a segv if an app which includes a syscall not listed is traces e.g. a new linux app. >How-To-Repeat: Trace an application with a syscall > than the max syscall listed >Fix: Change all occurances of:- (syscall_num < 0 || syscall_num > nsyscalls) ? NULL : syscallnames[syscall_num]; to:- (syscall_num < 0 || syscall_num >= nsyscalls) ? NULL : syscallnames[syscall_num]; >Release-Note: >Audit-Trail: >Unformatted: