Description of problem:
If you try to open serial device using path longer than 80 characters, rxtx segfaults.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. open device using device file path longer than 80 characters
*** buffer overflow detected ***: java terminated
======= Backtrace: =========
Created attachment 1010096 [details]
Patch which converts strcpy to strncpy
Issue with long path names comes from insecure use of strcpy. In almost all cases strcpy is used for generating internal debug messages, which are not normally presented. Simple conversion to strncpy limits length of reported messages.
Created attachment 1020852 [details]
Add rebased version of first patch, update spec file to 0.14
Adding complete patch also for spec file, release 0.14. The patch in comment #1 is rebased to 0.13.
The patched attached in this bug is arguably a security fix. Would appreciate if this version was pushed also to f21/f22, see bug #1212417.
rxtx-2-0.14.20100211 is available in my copr repo at https://copr.fedoraproject.org/coprs/leamas/harctoolbox/
rxtx-2.2-0.14.20100211.fc22 has been submitted as an update for Fedora 22.
rxtx-2.2-0.14.20100211.fc21 has been submitted as an update for Fedora 21.
* should fix your issue,
* was pushed to the Fedora 21 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing rxtx-2.2-0.14.20100211.fc21'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
rxtx-2.2-0.14.20100211.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
rxtx-2.2-0.14.20100211.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report.