Path: utzoo!mnetor!uunet!husc6!bloom-beacon!oberon!cit-vax!elroy!ames!ucbcad!ucbvax!hoptoad!gnu
From: gnu@hoptoad.uucp (John Gilmore)
Newsgroups: news.software.b
Subject: Re: Strange Core Dumps
Message-ID: <3618@hoptoad.uucp>
Date: 13 Dec 87 11:26:39 GMT
References: <2122@crash.cts.com> <7961@princeton.Princeton.EDU>
Organization: Nebula Consultants in San Francisco
Lines: 16
pep@princeton.Princeton.EDU (Pat Parseghian) wrote:
> - The offending articles are the only ones in my history file with a "%" in a
> Message-ID.
> - One of the articles () has a References line
> that is not a valid Message-ID (to the best of my understanding).
It occurs to me that if somehow a string like this was passed to "printf"
or maybe "scanf", the big number after the % might cause havoc, like an
attempt to malloc() a large amount of memory.
I recommend that somebody with the bug (I don't run news 2.11 here) grab
one of the faulty articles and feed it back into rnews, running rnews under
adb or dbx, with "trace malloc" or a breakpoint there.
--
{pyramid,ptsfa,amdahl,sun,ihnp4}!hoptoad!gnu gnu@toad.com
"Watch me change my world..." -- Liquid Theatre