From unknown Mon Jun 16 23:48:16 2025 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Mailer: MIME-tools 5.509 (Entity 5.509) Content-Type: text/plain; charset=utf-8 From: bug#76907 <76907@debbugs.gnu.org> To: bug#76907 <76907@debbugs.gnu.org> Subject: Status: Potential buffer overflow in getsockopt Reply-To: bug#76907 <76907@debbugs.gnu.org> Date: Tue, 17 Jun 2025 06:48:16 +0000 retitle 76907 Potential buffer overflow in getsockopt reassign 76907 guile submitter 76907 Mike Gran severity 76907 normal thanks From debbugs-submit-bounces@debbugs.gnu.org Sun Mar 09 20:57:09 2025 Received: (at submit) by debbugs.gnu.org; 10 Mar 2025 00:57:09 +0000 Received: from localhost ([127.0.0.1]:35151 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1trRS8-0005o4-Ta for submit@debbugs.gnu.org; Sun, 09 Mar 2025 20:57:09 -0400 Received: from lists.gnu.org ([2001:470:142::17]:56020) by debbugs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.84_2) (envelope-from ) id 1trRS5-0005nW-Vf for submit@debbugs.gnu.org; Sun, 09 Mar 2025 20:57:06 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1trRS0-0001vt-A9 for bug-guile@gnu.org; Sun, 09 Mar 2025 20:57:00 -0400 Received: from sonic301-1.consmr.mail.bf2.yahoo.com ([74.6.129.40]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1trRRy-00008c-Sn for bug-guile@gnu.org; Sun, 09 Mar 2025 20:57:00 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1741568216; bh=KI5nEt5d902u3aoElpD+LK81Mftveag0t0Dbc7FWHZQ=; h=From:To:Subject:Date:References:From:Subject:Reply-To; b=XOQWZYxHIZxK2mYm190BlDTegY+YNj/nhSUANmevBp60ExwrARTWQQWc21iqji66GmKR78xnP/vDTLDIW8N2AxszwYUzCtL4TigdR855nwJh6Qb7voPWJ/Q0Shh4yP5CbJ12TOyhLyz7kg9dmsS4zn09vqeJ7W2R1XJPURyQmO+CuhRlOE6+KSe95e6mEkPCk6kTHYDAAVQXGdJBbYj8mbhMTGxA86gWXV94/n3+ZC4D5jqz4SHL/u/DAzqr+pDHmoLAvgWyDoee6vCuqt4Xxm5aDOi7h7TtyjcC9CGwCk1jtQbU9e1YvyarPIRgsh/kI9F3Ts1Td/dpn1Nori6/ZQ== X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1741568216; bh=fI2P7tnFpLDOc6QqcWy/o4LCbcEjSAhNF2OXNzC8/yk=; h=X-Sonic-MF:From:To:Subject:Date:From:Subject; b=uLZOzIVGrqQMPB8HSiYFxmA2TSJ68VMRnrvBkELko4nh2wV08GZYrvfpCGe6Uuy+Yu1OaPkZ+hj6GrhcwhhULM2SseVyvGbXcnwN5pWjnYe2o/Rj6Cym9VZhzKa4WW2g/Gqrq3MDPxzsO03adlrRmKYjARScscRA6FFBE/mSBPZIqNbttujr5WxKP275hm29p59nMpymOIDrs69cX9eD+M7hzGIi4oIyQz6uXp1LmBy769Q4lZrFvDIAJnWIJXMmp/Z71efoTItumCFQOO+c2cXEfs3a63OERSX7F+nh4NCdDec7wM5ts4jOfO+9FbMHumLZS97OEcnNsM4S0EeTaQ== X-YMail-OSG: aAs72rEVM1lxpoJArl6_8OU2IIaDx5hS6Q17QtuhkqFy1xnZvN1tfad3ubMzddV Oy7dOOaXBnmTxmyp9jw24IDPDRqJ3kVG8KLaMBjGDfmEmoosIz_38j_U3ysdJTX6W5qMTgbCJ6fu 0J_loI0sR5KdXSxHmOSb2MOj87DuHBB.XMN4nfMA1SjXG590h.FbC0HNnok2nns3y8mrTWcepyFr 70lW.VLuFjedqIPbQsH5Gx1uG0qHbfAMaRYXjj9SO9E_iJEPF.d.x.kijHmQrKj5dK.PoU_cT3Sv pd_qj1yNOIiL96by_UKVcX1GHePSXjadoDowwcuyucnJHVIhQCSclTcvu1YEeIY_5NxBsAYdzIVP JMw4Oa1pU6H5FLeld82SlkKGmGG7ovZN42cPkTV59vhoKzT2zIcMWG8MNRXQOShFhQHI1WJ5ybls nCX7Y9S0LWL04MKhhWjFgmD1FED8qgiv9xTOv76lHffdUKonfD_wy.OUhSHXMq.TsGIpoesQWxnU GVieC3rrBfwVa4BMvkasglpFhRZjzLy6_uMhnroUe.LZCYi3JqyaN4kHasQ93poFH9M3P7OrqMqj dUsMuQ7IULEGpcTNmo_JO73virOa5UwvyVClrEaDyBXT_F_d1JkBjKTmSBW3hToYmwkBt6TdZTCs EVPeMqNfJm20QRV9eg6DKSOK_t0TlLy_FQuiPpEUJvdHzxKXkWuTYKXlkEchJhZ7xq.1LtuOjst_ IpWEoyCeLG.rOj.16SN149ti9bBVGFtx8fBs3GO5mxRM1wHv56Fw.hpzaMZZEVSR85OFcs_2ocZJ j77tWod3MB.fkHqJ42pFAHqI0cUmV8okUkrmacgm.1XGXN_rz3EfEWRaPIQynsWUTpSGF_slLNhB 8OggXIqk7wAMgsB88oJE7RpbthK8q4LU7TsHBGyVEMcrRZqlQfpRBVWtZq5FgF5Oqk3CAl5shWnx 5S1B80lzjzHlp5egicEP2pK0OnORQ186Y_4.eog_Cs8YrHjY9SWZ30_KWzw1A.JCpUWkzOLawUgQ lweguK78YbGrms5WsaptPYFdG.Q0EaaC70MIMeyZjy6rmIVoKNmn6ueX1mIimhIvfEWQCz6TyDkZ XyXKX6sxedU2NWreEF2wPlIrqmYBL3kwflQtiMjafNn0QBCFJrP8Zfs7Hx9rfypwKblj9J62mM7b aUU.JLHrVzBO4KUET94ZutBhRxIgQBQSb1O4BBzkxRYVhC40U2ki6AzUnI7RjZ9Tu7LRIDhqEuHs 4TLRoMxB3V4KcQMLxwzg7ZWMnAK6p7rrFaWkBjsLTOTO0ogLtpxHRx3oqwe1Tn46d9EOMbSYZk0m _RCR_7Ut7hYS1R5rvcX54S4FV6qM_3yoR.8dlcvKqaU7Tgjio.PU.oUQDw_HOZ4DZkmz3Q3YDCR5 bP_MZkzDVGXRQVXaJRuYp8Hn8SsFmLIpsdzBPFZTgNKeXns.VIYvLzHHGTh9siqcYKtQRuHCtakX uGW0AdYUc6I2V6e3h_KBfAAMV7NtPg_SIjDFN8VOXZxvNNR6eWAc9pcSZuzer4wKuae9v.RPMfZI y0d4FJck7voXgDeEJmidUSvy03XShouTKGrSu9YQFEo53ECQCq1n.2hnpn4lHbGHSLwwETNAhED0 dfbRIi9BhiYEOWEmEJ_wsTLIDUgQHI2cKVhD3KZL0DKPwLbkDhPM6YaJgqUuJSqTt3qdlJtystiX Hsuh_UrKcgMapXxhsIiQYE2YLk_yRRTdhj8fDW35nTpsEqhCfiRU6hxmoP8ALvfGvGk.z24W.2vZ iIlHCrNkz1hjnhkz4IUxKZzaJTDnI_cQhC2VeUPd4b18UFeDkVa0NKV9U1xZdW_NKBDX3QNSGWvr wfIYTjVfpmXydwrGk4gQKR_jcoTiA8ACOHaF5eu2NU6v.8Ksm5BaYlcM6IiU39HdGGnM5pR7DfQc JmRM9PbAYSuZVORf7AsjONM9_PB9CUJYCc3rwsni_a2RQo7ASoI4CBtSrwAq6T34CR6h7qXWqtsm nSy4lR9e0pYWJuAVTeJE4sZwi2jzmaciHhW214HUokGoN0TM.PTvxuHrLaOd.46iRMZ3uu9T.BcQ kiHaVh020QfyMqsu8s_S3XE2ZSsZyzI7fhe1sNsBbJav0PYtiSNRAjf_f6sx8uITDHBd3WIdYIEm WpWo2_VtfXU21kxbIj61897ZC1a.9OhZSyhPyuhj6x8GyOYIas7Z88T69PJ9ag2YtEfrSLy1NCw2 MDnjkJyKmNYs51.luLonD3CCoxO0Mig1DSKV9hKFRa3feVRU- X-Sonic-MF: X-Sonic-ID: 4c16caf6-5eab-4919-b311-cfec6575cfa3 Received: from sonic.gate.mail.ne1.yahoo.com by sonic301.consmr.mail.bf2.yahoo.com with HTTP; Mon, 10 Mar 2025 00:56:56 +0000 Received: by hermes--production-gq1-7d5f4447dd-ch7tx (Yahoo Inc. Hermes SMTP Server) with ESMTPA ID 0b711d2b5d875c34cf53b7d323f7f7f5; Mon, 10 Mar 2025 00:56:53 +0000 (UTC) From: Mike Gran To: bug-guile@gnu.org Subject: Potential buffer overflow in getsockopt User-Agent: mu4e 1.12.8; emacs 29.4 Date: Sun, 09 Mar 2025 17:56:52 -0700 Message-ID: <87tt81ityj.fsf@yahoo.com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="=-=-=" References: <87tt81ityj.fsf.ref@yahoo.com> X-Mailer: WebService/1.1.23435 mail.backend.jedi.jws.acl:role.jedi.acl.token.atz.jws.hermes.yahoo Content-Length: 1563 Received-SPF: pass client-ip=74.6.129.40; envelope-from=spk121@yahoo.com; helo=sonic301-1.consmr.mail.bf2.yahoo.com X-Spam_score_int: -17 X-Spam_score: -1.8 X-Spam_bar: - X-Spam_report: (-1.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: 1.9 (+) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: struct timeval is a potential return value of struct getsockopt, but, when HAVE_STRUCT_LINGER is not defined, scm_t_getsockopt_result may be too small to hold a struct timeval. To fix this, struct timeval can be added to the scm_t_getsockopt_result union. Content analysis details: (1.9 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [2001:470:142:0:0:0:0:17 listed in] [list.dnswl.org] 0.7 SPF_NEUTRAL SPF: sender does not match SPF record (neutral) 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (spk121[at]yahoo.com) 0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in digit (spk121[at]yahoo.com) -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 1.0 FORGED_YAHOO_RCVD 'From' yahoo.com does not match 'Received' headers X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.9 (/) --=-=-= Content-Type: text/plain struct timeval is a potential return value of struct getsockopt, but, when HAVE_STRUCT_LINGER is not defined, scm_t_getsockopt_result may be too small to hold a struct timeval. To fix this, struct timeval can be added to the scm_t_getsockopt_result union. Regards, Mike Gran --=-=-= Content-Type: text/x-patch Content-Disposition: attachment; filename=0001-Fixes-potential-buffer-overflow-in-getsockopt.patch Content-Description: patch >From 0ebd33ee05ad02aa9b96d9910c5facb087278d00 Mon Sep 17 00:00:00 2001 From: Michael Gran Date: Sat, 8 Mar 2025 18:42:35 -0800 Subject: [PATCH] Fixes potential buffer overflow in getsockopt struct timeval is a possible return value of getsockopt, but, when HAVE_STRUCT_LINGER is not defined, scm_t_getsockopt_result may be too small to hold a struct timeval. * libguile/socket.c: add struct timeval to scm_t_getsockopt union --- libguile/socket.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/libguile/socket.c b/libguile/socket.c index 101afd80d..aa012c919 100644 --- a/libguile/socket.c +++ b/libguile/socket.c @@ -1,4 +1,4 @@ -/* Copyright 1996-1998,2000-2007,2009,2011-2015,2018,2021,2022 +/* Copyright 1996-1998,2000-2007,2009,2011-2015,2018,2021,2022,2025 Free Software Foundation, Inc. This file is part of Guile. @@ -454,6 +454,7 @@ typedef union #endif size_t size; int integer; + struct timeval timeval; } scm_t_getsockopt_result; SCM_DEFINE (scm_getsockopt, "getsockopt", 3, 0, 0, -- 2.48.1 --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Mon Mar 10 12:53:12 2025 Received: (at submit) by debbugs.gnu.org; 10 Mar 2025 16:53:12 +0000 Received: from localhost ([127.0.0.1]:39526 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1trgNM-0005SH-DH for submit@debbugs.gnu.org; Mon, 10 Mar 2025 12:53:12 -0400 Received: from lists.gnu.org ([2001:470:142::17]:35182) by debbugs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.84_2) (envelope-from ) id 1trgNI-0005S0-UK for submit@debbugs.gnu.org; Mon, 10 Mar 2025 12:53:10 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1trgNB-0003Eu-F1 for bug-guile@gnu.org; Mon, 10 Mar 2025 12:53:02 -0400 Received: from sonic311-14.consmr.mail.bf2.yahoo.com ([74.6.131.124]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1trgN9-0005t5-Lz for bug-guile@gnu.org; Mon, 10 Mar 2025 12:53:01 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1741625576; bh=UvNINKXkTA2/bI+j8GIJvCWp1GBI1CbPMp4WLTQHXs8=; h=From:To:Subject:In-Reply-To:References:Date:From:Subject:Reply-To; b=Xo+dht+KNuEAyfTyApUelRpOee+GaCUQ6qduV7zd2bUZI8R9ksG7SJiG7Et60pzLLTuWvFH43XdJ4HuAcUdFvXdX/AGHXAZs8Lbjv2hzYeoMUZnrrbh4roFh6S0NLYxLhEnwQnjuhiro4r9t+r8dphqin786S2gbGwf1SvGqgk566yd0/KxDrzMbqT7Sc+EU9c/dwj4Xk6zrgZDxHIfoCQX+ECtlQ0zl4Tv5AB7QCSuzHKBY810GDikKh3OGmGScXFKaqkfEIXYbyprTwPAF5vaSF/pe0tZLAYTWyrFKk1l0+poWrO+wACGpiScmd5kHiJTpi0DuGRH9ZXRU87cg4Q== X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1741625576; bh=+BWEUU+pA0de6EhobqgTx2BW3guJ5lOKczJTLPvbzuo=; h=X-Sonic-MF:From:To:Subject:Date:From:Subject; b=YsRDSCSZtjZqTO7Y+X6E889BaiaY9oODYgPBT+y8obts8JcpHwCqNIfuY9xKZ/NjgCWiAxSEf2VQ0a64+UwJs0ByopVnwrHqdw3aXEm4tHqRkcniXr8NgvFQ59di5eJyeotHm+pwO7c5eexa055HcnfvlpPsOeI8VtCTz9pszEWRKl7JoO3dEULY6Ss5+ZQnBaQhJLjXfl1V4t/4KCLKmUvIUxKo/sFj5WiLOTRVK80gY6MC+InX2QXrwwJB47a94gkYuMxNgTmAmHqcy6kJVGVO/RtXL3/XRXPvtwdSLL+f1AM9nt/+eVlaIvMxweI6+g4v2wyhutGn8IlEwS4wsA== X-YMail-OSG: S0tRjOYVM1kpCpFp1VWxJhMQjuB0xKI6x543HMP6kPNeAkzqKVBehgasWCMx1vx TPN2kORNpK.9_SJRV8VYgRPCNjK0EZ6XCLpjY8IcvQKctiHtlg8ZkmJI9q0Iz.kzzKrUvVn2T0w8 uGtQ5B419iZJDibyJBL82Y5sVoHxKGuLh4pYEAyqsOyLKDVP9zFGbNfYZ6QtV0xuJf5qpeTmPFY1 3RMTzH5FjYlJRQP4mQrkTMu5U4KKdJUOYPG5JUbrd5fVMtfP5sow5JfYYYi56iSNSxC_LDT3W1GY VhJkm6gZKyn6IMNswbP9bjQW1xdz37aHAy3T7N1i2aKlsff_ac59dEwQO5A3G8u9GDpkoYYYTDF8 vECoOq8gNTXVlcsQAazaW4AaverCg5U5IwPo0rPv1VLKgMOxU5QQQkCDgYJVMqHDmV7ZWHZNsJ7_ EbV2P5FBqBzvp4TQsbutN5qopcNcAiuISF5A2vI54OAn1tqXAC5jdUo33aNK_1PMOB.XzL1AEmBo XGmOuMaXKjTRKoF2RKdzziu5fPfpvtsK12wtKMSkzEmdC6cjDwitCrKpsv1GWSV2AjHPVHqfiGaA .Vjjpqn1c3WI4dI8Z7tfV8n3Z9h7.LtvrMd3oXpivt8vloo1XivwDkUDxn_PULV_sTOPu7H3zjDQ aAAHyybMCZ2sZ1f4zgwM9g0b2Ex2hG0gq0lUbeDH4FHI2awOyfaGzjF5Ny6tYiL8jnGBEHXStLb_ 8cmrQF2IVkTIgnLmXulxaMh3PSWLJ7IiRh4spBtCxRMu6ByW3wV16XDGWpsyt9zaJA_Etx3xQ22t iGEM.al5fr0tzr2KwJX2vLk9MnKNBbrviYa4t9zo_evv4xFsGDJY.moHLoFASO4U7_MBAMZaK_f8 w0NTQaArvsk.a.jp3vT_jcRRcmFYJ3B9qYXiYwX0e0gfoA2yE.zUl72SpXhe3jcW1tx6wRWi3FWb MtvSax.iaeH9bT4clAJbbrJKeqeMVF23oA7NyvYaT1RDiZVbTZ4GmDofC518_EkolQgZRLK6Gjd3 0v59zE1ICCRtsI.IRd0ohoZh4EXR.Weh7Hs_HatruHqZeqsVGMeKj8y342CQc87KqIdnVNiSwRjB F03B31mJZWSI9B5DKFF9YwwVDBiA_xa39wQWRvhbWi1azJGYJYddOlBf87DWAi863M2qbLynLyQ9 6fp_LAt_H5z6QMiOxOSj_ouzRFVTOd.4tTcdv_z3nmFqIKPm.3OHsfMOqVIYGmlQZQLKq58k3YFQ 1a4x9kwXfvN6vSxsqrO6mT9ERucQWxB59lkcde1n4zJIgnLqirKcNFon4ryvzN8bkSluy6tIOtIz QSs8p07Iv_.cleJfMNyOUMqk5of4aTeXQ9cbco2_2H7FulUreTu5gTTlWRJVWXw.8RRk97EVY6HI 9_BCuIM.yHcJJ_DKqjl3h6IxXekORDixfjGt6jpFLk3qYXI.0Ue.LfILSp.l.LfSowrBTRErmH71 FwVHAq2.iuSlLZ8LirW.3gXJo.tO8THd7cb07.jqCGFL1Vu4eWsSUtcqwqMEGY6WVYkMgbnARqfc 6VUG920ToJnqQY9hXN1AIVkIpIVr9153s__x.e907heC0kpLKXSP0CB5mVuz9CSAbirT0xGBtJ.Q 4FF_t_PD0IGuALKauMZ8VZjxTCt.hYjTG32NkbPLwkf_QU_aILR3OUPXKWMyXcGmX2NUl239KY.W EUp9zWTfPjJThJBB2wu_h7syG91HZxVKxq2pjh6j58oE4ipusPv.ObvWyLoogrA_OHID58OrleTv RgYPgvrKfCW42BuMD7KSio50KQhfTHUQYsTM_vdds.JElrJdTK9Ljjzdf.McsfcMfroCEBg.dFDh O.7gzoEm.D4d_JJozLUYiHWaCJ9tnSN_IGxMcxswE1MdvWoXMh0a2aBfVCc.GMOVz0poLIbuTC3c IlnOepAOLAxQpJ1Ijo16OW8IFpslGHNO3fmJkcTl6faFQs72VreGT4qSSm.RBRp8KvZ3sRt7Plsg pgijP8kj2REBX7_LHDFbf08PneTOqAVc0w5zNl9b9ETwXswaQP2ApeDpyYUnuKVaPROroXV5v75V eYk1tnImR9zhGUHkIPVhQ6yDNhM5tjMVZOVg47sqysb8naO_JPNYkXrFSTNHT9OecrbABdZTp42W eB.H86aeaANA9UzEyAGVCGlHqqla.aG9sjuPgYM9VdtdHLGDYu1bdO5swSB3d9Am5pDOnv2QBA2X ZN2Tdpc2QBTegKU59QvdvIzKgg5NyOI.eCDsGMl41.HFfWIM- X-Sonic-MF: X-Sonic-ID: 027fc9b0-e613-4c16-a11a-6c8c96dd3fbb Received: from sonic.gate.mail.ne1.yahoo.com by sonic311.consmr.mail.bf2.yahoo.com with HTTP; Mon, 10 Mar 2025 16:52:56 +0000 Received: by hermes--production-gq1-7d5f4447dd-jx67d (Yahoo Inc. Hermes SMTP Server) with ESMTPA ID 783eacafa283cafb88896509a72c61c3; Mon, 10 Mar 2025 16:52:52 +0000 (UTC) From: Mike Gran To: bug-guile@gnu.org Subject: Re: Potential buffer overflow in getsockopt In-Reply-To: <87tt81ityj.fsf@yahoo.com> (Mike Gran's message of "Sun, 09 Mar 2025 17:56:52 -0700") References: <87tt81ityj.fsf@yahoo.com> User-Agent: mu4e 1.12.8; emacs 29.4 Date: Mon, 10 Mar 2025 09:52:50 -0700 Message-ID: <87jz8weskd.fsf@yahoo.com> MIME-Version: 1.0 Content-Type: text/plain X-Mailer: WebService/1.1.23435 mail.backend.jedi.jws.acl:role.jedi.acl.token.atz.jws.hermes.yahoo Content-Length: 446 Received-SPF: pass client-ip=74.6.131.124; envelope-from=spk121@yahoo.com; helo=sonic311-14.consmr.mail.bf2.yahoo.com X-Spam_score_int: -17 X-Spam_score: -1.8 X-Spam_bar: - X-Spam_report: (-1.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: 1.9 (+) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Mike Gran writes: > struct timeval is a potential return value of struct getsockopt, but, > when HAVE_STRUCT_LINGER is not defined, scm_t_getsockopt_result may > be too small to hold a struct timeval. > > To fix this, [...] Content analysis details: (1.9 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in digit (spk121[at]yahoo.com) -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at https://www.dnswl.org/, no trust [2001:470:142:0:0:0:0:17 listed in] [list.dnswl.org] 0.7 SPF_NEUTRAL SPF: sender does not match SPF record (neutral) -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (spk121[at]yahoo.com) 1.0 FORGED_YAHOO_RCVD 'From' yahoo.com does not match 'Received' headers X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.9 (/) Mike Gran writes: > struct timeval is a potential return value of struct getsockopt, but, > when HAVE_STRUCT_LINGER is not defined, scm_t_getsockopt_result may > be too small to hold a struct timeval. > > To fix this, struct timeval can be added to the scm_t_getsockopt_result > union. Also, this should partially fix the guile-without-threads in Guix's CI. https://ci.guix.gnu.org/build/9530486/details Regards, Mike Gran From debbugs-submit-bounces@debbugs.gnu.org Tue Mar 18 15:36:36 2025 Received: (at 76907-done) by debbugs.gnu.org; 18 Mar 2025 19:36:37 +0000 Received: from localhost ([127.0.0.1]:43345 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1tucjr-0000fR-NI for submit@debbugs.gnu.org; Tue, 18 Mar 2025 15:36:36 -0400 Received: from defaultvalue.org ([45.33.119.55]:55864) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1tucjo-0000em-Tc for 76907-done@debbugs.gnu.org; Tue, 18 Mar 2025 15:36:34 -0400 Received: from trouble.defaultvalue.org (localhost [127.0.0.1]) (Authenticated sender: rlb@defaultvalue.org) by defaultvalue.org (Postfix) with ESMTPSA id 5C36D20600; Tue, 18 Mar 2025 14:36:32 -0500 (CDT) Received: by trouble.defaultvalue.org (Postfix, from userid 1000) id E6EAD14E156; Tue, 18 Mar 2025 14:36:31 -0500 (CDT) From: Rob Browning To: Mike Gran , 76907-done@debbugs.gnu.org Subject: Re: bug#76907: Potential buffer overflow in getsockopt In-Reply-To: <87tt81ityj.fsf@yahoo.com> References: <87tt81ityj.fsf.ref@yahoo.com> <87tt81ityj.fsf@yahoo.com> Date: Tue, 18 Mar 2025 14:36:31 -0500 Message-ID: <87a59iyvuo.fsf@trouble.defaultvalue.org> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: 76907-done X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Mike Gran via "Bug reports for GUILE, GNU's Ubiquitous Extension Language" writes: > struct timeval is a potential return value of struct getsockopt, but, > when HAVE_STRUCT_LINGER is not defined, scm_t_getsockopt_result may > be too small to hold a struct timeval. Pushed to main along with a commit to add -Werror=array-bounds when available which would have caught the issue. Thanks -- Rob Browning rlb @defaultvalue.org and @debian.org GPG as of 2011-07-10 E6A9 DA3C C9FD 1FF8 C676 D2C4 C0F0 39E9 ED1B 597A GPG as of 2002-11-03 14DD 432F AE39 534D B592 F9A0 25C8 D377 8C7E 73A4 From unknown Mon Jun 16 23:48:16 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Wed, 16 Apr 2025 11:24:12 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator