tildeslash / Monit / issues / #880 - Buffer overread in MD5 code — Bitbucket

Issue #880 resolved

Hanno Böck created an issue 2020-02-19

When compiling monit with address sanitizer (-fsanitize=address in CFLAGS+LDFLAGS) and connecting to the web interface with any password it will show a buffer overread in the MD5 code (function md5_process).

I tried tracking down the bug, but the code is relatively complicated. I’m attaching a full stack trace from asan.

monit-buffer-overread.txt

Comments (4)

cgzones
Commit https://bitbucket.org/cgzones/monit/commits/9090f6a440b0b88b85265eed21d41bb04cf4c87f?at=master (“Util_getToken: fix stack overflow”) from pr https://bitbucket.org/tildeslash/monit/pull-requests/77 should fix this
- 2020-03-02T14:42:34+00:00
Massimo Sala
Hi Hanno

Why do you use also LDFLAGS ?

Is not sufficient to set CFLAGS ?

‌
- 2020-03-20T17:38:26+00:00
Hanno Böck reporter
You need ASAN in the linker flags, because it’s implemented as a library that has to be linked into the executable.
- 2020-03-21T07:33:04+00:00
Tildeslash repo owner
- changed status to resolved
fixed: https://bitbucket.org/tildeslash/monit/pull-requests/77/misc-fixes/diff

Thanks to Lutz Mader for patch
- 2020-03-31T08:56:41+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: resolved

Component: Monit

Version: 5.26.0

Votes: 0

Watchers: 1