Firefox buffer overflow - Suse

This is a discussion on Firefox buffer overflow - Suse ; I am not able to run Firefox. I don't know why this happened but I've tried several versions and none work. I've included a console session in hopes someone might understand what might have gone wrong. This is the downloaded ...

+ Reply to Thread
Results 1 to 10 of 10

Thread: Firefox buffer overflow

  1. Firefox buffer overflow

    I am not able to run Firefox. I don't know why this happened but I've tried
    several versions and none work. I've included a console session in hopes
    someone might understand what might have gone wrong. This is the
    downloaded from Mozilla web site source version..

    mike@jupiter:~/downloads/bz2/firefox> ./firefox
    *** buffer overflow detected ***: ./firefox-bin terminated
    ======= Backtrace: =========
    /lib/libc.so.6(__chk_fail+0x41)[0xb6a553b1]
    /lib/libc.so.6[0xb6a54b98]
    /lib/libc.so.6(_IO_default_xsputn+0xb7)[0xb69e4b97]
    /lib/libc.so.6(_IO_vfprintf+0xc8b)[0xb69bd16b]
    /lib/libc.so.6(__vsprintf_chk+0xad)[0xb6a54c4d]
    /lib/libc.so.6(__sprintf_chk+0x30)[0xb6a54b80]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb4c2b21e]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb4c2bb50]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb4c4478b]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb4c461cf]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb6de7066]
    /usr/local/lib/libgobject-2.0.so.0[0xb6dcc3e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb6dccba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb6dcd6f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb6dcd860]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so(theme_create_rc_style+0x36
    [0xb4c295f6]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_theme_engine_create_rc_style+0x1c
    [0xb719296c]
    /usr/lib/libgtk-x11-2.0.so.0[0xb71108ea]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7112b56]
    /usr/lib/libgtk-x11-2.0.so.0[0xb711374b]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7113be2]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7113d6e]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_rc_reparse_all_for_settings+0x104
    [0xb7114154]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_settings_get_for_screen+0xb4)[0xb712f9f4]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_settings_get_default+0x25)[0xb712fb85]
    /usr/lib/libgtk-x11-2.0.so.0[0xb714978c]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb6de7066]
    /usr/local/lib/libgobject-2.0.so.0[0xb6dcc3e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb6dccba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb6dcd6f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb6dcd860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_style_new+0x27)[0xb7141cb7]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_widget_get_default_style+0x2d)[0xb71e7dfd]
    /usr/lib/libgtk-x11-2.0.so.0[0xb71e7ea4]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x2aa)[0xb6de6eba]
    /usr/local/lib/libgobject-2.0.so.0[0xb6dcc3e2]
    /usr/lib/libgtk-x11-2.0.so.0[0xb70aab94]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb6dccba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb6dcd6f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb6dcd860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_invisible_new+0x27)[0xb70aae27]
    ../libxul.so[0xb7c0ab33]
    ../libxul.so[0xb7c0a734]
    ../libxul.so[0xb7c09027]
    ../libxul.so[0xb7cae09a]
    ../libxul.so[0xb7cd9a8f]
    ../libxul.so[0xb7cd95c2]
    ../libxul.so[0xb7ca9138]
    ../libxul.so[0xb7ca8667]
    ../libxul.so[0xb7af1f19]
    ../libxul.so[0xb7548976]
    ../libxul.so(XRE_main+0x1724)[0xb754ae6a]
    ../firefox-bin[0x8048aba]
    /lib/libc.so.6(__libc_start_main+0xe0)[0xb6995fe0]
    ../firefox-bin[0x8048921]
    ======= Memory map: ========
    08048000-0804a000 r-xp 00000000 08:04
    297506 /home/mike/downloads/bz2/firefox/firefox-bin
    0804a000-0804b000 rw-p 00001000 08:04
    297506 /home/mike/downloads/bz2/firefox/firefox-bin
    0804b000-08900000 rw-p 0804b000 00:00 0 [heap]
    b4c24000-b4c4b000 r-xp 00000000 08:03
    594240 /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so
    b4c4b000-b4c4c000 r--p 00026000 08:03
    594240 /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so
    b4c4c000-b4c4d000 rw-p 00027000 08:03
    594240 /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so
    b4c4d000-b4c4e000 rw-p b4c4d000 00:00 0
    b4c4e000-b4c73000 r-xp 00000000 08:04
    2014307 /home/mike/downloads/bz2/firefox/components/libbrowsercomps.so
    b4c73000-b4c75000 rw-p 00025000 08:04
    2014307 /home/mike/downloads/bz2/firefox/components/libbrowsercomps.so
    b4c75000-b4c7e000 r-xp 00000000 08:04
    2014274 /home/mike/downloads/bz2/firefox/components/libbrowserdirprovider.so
    b4c7e000-b4c7f000 rw-p 00008000 08:04
    2014274 /home/mike/downloads/bz2/firefox/components/libbrowserdirprovider.so
    b4c7f000-b4c80000 ---p b4c7f000 00:00 0
    b4c80000-b5480000 rw-p b4c80000 00:00 0
    b5480000-b5481000 ---p b5480000 00:00 0
    b5481000-b5c81000 rw-p b5481000 00:00 0
    b5c81000-b5cb6000 r--s 00000000 08:03 901174 /var/run/nscd/dbZXs0B7
    (deleted)
    b5cb6000-b5ceb000 r--s 00000000 08:03 901146 /var/run/nscd/passwd
    b5ceb000-b5cfe000 r-xp 00000000 08:03 2077390 /lib/libnsl-2.6.1.so
    b5cfe000-b5d00000 rw-p 00012000 08:03 2077390 /lib/libnsl-2.6.1.so
    b5d00000-b5d02000 rw-p b5d00000 00:00 0
    b5d02000-b5db2000 r-xp 00000000 08:03 169627 /usr/lib/libasound.so.2.0.0
    b5db2000-b5db4000 r--p 000b0000 08:03 169627 /usr/lib/libasound.so.2.0.0
    b5db4000-b5db6000 rw-p 000b2000 08:03 169627 /usr/lib/libasound.so.2.0.0
    b5db6000-b5ddf000 r-xp 00000000 08:03 166521 /usr/lib/libpcre.so.0.0.1
    b5ddf000-b5de1000 rw-p 00028000 08:03 166521 /usr/lib/libpcre.so.0.0.1
    b5de1000-b5de3000 r-xp 00000000 08:03 2077137 /lib/libutil-2.6.1.so
    b5de3000-b5de5000 rw-p 00001000 08:03 2077137 /lib/libutil-2.6.1.so
    b5de5000-b5df4000 r-xp 00000000 08:03 2077816 /lib/libresolv-2.6.1.so
    b5df4000-b5df6000 rw-p 0000e000 08:03 2077816 /lib/libresolv-2.6.1.so
    b5df6000-b5df8000 rw-p b5df6000 00:00 0
    b5df8000-b5e06000 r-xp 00000000 08:03
    179363 /usr/lib/libavahi-client.so.3.2.2
    b5e06000-b5e08000 rw-p 0000d000 08:03
    179363 /usr/lib/libavahi-client.so.3.2.2
    b5e08000-b5e12000 r-xp 00000000 08:03
    173047 /usr/lib/libavahi-common.so.3.4.4
    b5e12000-b5e14000 rw-p 00009000 08:03
    173047 /usr/lib/libavahi-common.so.3.4.4
    b5e14000-b5f41000 r-xp 00000000 08:03 1128355 /usr/lib/libcrypto.so.0.9.8
    b5f41000-b5f48000 r--p 0012c000 08:03 1128355 /usr/lib/libcrypto.so.0.9.8
    b5f48000-b5f56000 rw-p 00133000 08:03 1128355 /usr/lib/libcrypto.so.0.9.8
    b5f56000-b5f5a000 rw-p b5f56000 00:00 0
    b5f5a000-b5f99000 r-xp 00000000 08:03 1128356 /usr/lib/libssl.so.0.9.8
    b5f99000-b5f9d000 rw-p 0003e000 08:03 1128356 /usr/lib/libssl.so.0.9.8
    b5f9d000-b5fce000 r-xp 00000000 08:03 2077180 /lib/libdbus-1.so.3.2.0
    b5fce000-b5fd0000 rw-p 00030000 08:03 2077180 /lib/libdbus-1.so.3.2.0
    b5fd0000-b5fea000 r-xp 00000000 08:03
    171936 /usr/lib/libdbus-glib-1.so.2.1.0
    b5fea000-b5fec000 rw-p 0001a000 08:03
    171936 /usr/lib/libdbus-glib-1.so.2.1.0
    b5fec000-b5ff0000 r-xp 00000000 08:03
    175635 /usr/lib/libORBitCosNaming-2.so.0.1.0
    b5ff0000-b5ff2000 rw-p 00003000 08:03
    175635 /usr/lib/libORBitCosNaming-2.so.0.1.0
    b5ff2000-b6012000 r-xp 00000000 08:03
    164792 /usr/lib/libaudiofile.so.0.0.2
    b6012000-b6015000 rw-p 0001f000 08:03
    164792 /usr/lib/libaudiofile.so.0.0.2
    b6015000-b601e000 r-xp 00000000 08:03 166792 /usr/lib/libesd.so.0.2.38
    b601e000-b601f000 r--p 00008000 08:03 166792 /usr/lib/libesd.so.0.2.38
    b601f000-b6020000 rw-p 00009000 08:03 166792 /usr/lib/libesd.so.0.2.38
    b6020000-b6026000 r-xp 00000000 08:03
    173155 /usr/lib/libgailutil.so.18.0.1
    b6026000-b6028000 rw-p 00006000 08:03
    173155 /usr/lib/libgailutil.so.18.0.1
    b6028000-b6046000 r-xp 00000000 08:03 164861 /usr/lib/libjpeg.so.62.0.0
    b6046000-b6048000 rw-p 0001d000 08:03 164861 /usr/lib/libjpeg.so.62.0.0
    b6048000-b6055000 r-xp 00000000 08:03
    173102 /usr/lib/libgnome-keyring.so.0.1.1
    b6055000-b6057000 rw-p 0000c000 08:03
    173102 /usr/lib/libgnome-keyring.so.0.1.1
    b6057000-b60a0000 r-xp 00000000 08:03
    167823 /usr/lib/libORBit-2.so.0.1.0
    b60a0000-b60a7000 r--p 00049000 08:03
    167823 /usr/lib/libORBit-2.so.0.1.0
    b60a7000-b60aa000 rw-p 00050000 08:03
    167823 /usr/lib/libORBit-2.so.0.1.0
    b60aa000-b60d9000 r-xp 00000000 08:03
    1096390 /usr/lib/libgconf-2.so.4.1.2
    b60d9000-b60dc000 rw-p 0002f000 08:03
    1096390 /usr/lib/libgconf-2.so.4.1.2
    b60dc000-b6132000 r-xp 00000000 08:03
    170005 /usr/lib/libgnomevfs-2.so.0.2000.0
    b6132000-b6133000 r--p 00055000 08:03
    170005 /usr/lib/libgnomevfs-2.so.0.2000.0
    b6133000-b6135000 rw-p 00056000 08:03
    170005 /usr/lib/libgnomevfs-2.so.0.2000.0
    b6135000-b6136000 rw-p b6135000 00:00 0
    b6136000-b6149000 r-xp 00000000 mike@jupiter:~/downloads/bz2/firefox> ***
    buffer overflow detected
    ***: /home/mike/downloads/bz2/firefox/crashreporter terminated
    ======= Backtrace: =========
    /lib/libc.so.6(__chk_fail+0x41)[0xb78863b1]
    /lib/libc.so.6[0xb7885b98]
    /lib/libc.so.6(_IO_default_xsputn+0xb7)[0xb7815b97]
    /lib/libc.so.6(_IO_vfprintf+0xc8b)[0xb77ee16b]
    /lib/libc.so.6(__vsprintf_chk+0xad)[0xb7885c4d]
    /lib/libc.so.6(__sprintf_chk+0x30)[0xb7885b80]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb739021e]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb7390b50]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb73a978b]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb73ab1cf]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb7adc066]
    /usr/local/lib/libgobject-2.0.so.0[0xb7ac13e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb7ac1ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb7ac26f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb7ac2860]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so(theme_create_rc_style+0x36
    [0xb738e5f6]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_theme_engine_create_rc_style+0x1c
    [0xb7eac96c]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e2a8ea]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e2cb56]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e2d74b]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e2dbe2]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e2dd6e]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_rc_reparse_all_for_settings+0x104
    [0xb7e2e154]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_settings_get_for_screen+0xb4)[0xb7e499f4]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_settings_get_default+0x25)[0xb7e49b85]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e6378c]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb7adc066]
    /usr/local/lib/libgobject-2.0.so.0[0xb7ac13e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb7ac1ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb7ac26f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb7ac2860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_style_new+0x27)[0xb7e5bcb7]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_widget_get_default_style+0x2d)[0xb7f01dfd]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7f01ea4]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x2aa)[0xb7adbeba]
    /usr/local/lib/libgobject-2.0.so.0[0xb7ac13e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb7ac1ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb7ac26f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb7ac2860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_window_new+0x34)[0xb7f174c4]
    /home/mike/downloads/bz2/firefox/crashreporter[0x804fde9]
    /home/mike/downloads/bz2/firefox/crashreporter[0x804d0b4]
    /lib/libc.so.6(__libc_start_main+0xe0)[0xb77c6fe0]
    /home/mike/downloads/bz2/firefox/crashreporter[0x804b271]
    ======= Memory map: ========
    08048000-08053000 r-xp 00000000 08:04
    297513 /home/mike/downloads/bz2/firefox/crashreporter
    08053000-08054000 rw-p 0000a000 08:04
    297513 /home/mike/downloads/bz2/firefox/crashreporter
    08054000-080b9000 rw-p 08054000 00:00 0 [heap]
    b6bfb000-b6c30000 r--s 00000000 08:03 901146 /var/run/nscd/passwd
    b6c30000-b6c59000 r-xp 00000000 08:03 166521 /usr/lib/libpcre.so.0.0.1
    b6c59000-b6c5b000 rw-p 00028000 08:03 166521 /usr/lib/libpcre.so.0.0.1
    b6c5b000-b6c61000 r-xp 00000000 08:03
    173155 /usr/lib/libgailutil.so.18.0.1
    b6c61000-b6c63000 rw-p 00006000 08:03
    173155 /usr/lib/libgailutil.so.18.0.1
    b6c63000-b6c78000 r-xp 00000000 08:03 165050 /usr/lib/libICE.so.6.3.0
    b6c78000-b6c7a000 rw-p 00014000 08:03 165050 /usr/lib/libICE.so.6.3.0
    b6c7a000-b6c7c000 rw-p b6c7a000 00:00 0
    b6c7c000-b6c83000 r-xp 00000000 08:03 165229 /usr/lib/libSM.so.6.0.0
    b6c83000-b6c85000 rw-p 00006000 08:03 165229 /usr/lib/libSM.so.6.0.0
    b6c85000-b6ca3000 r-xp 00000000 08:03 164861 /usr/lib/libjpeg.so.62.0.0
    b6ca3000-b6ca5000 rw-p 0001d000 08:03 164861 /usr/lib/libjpeg.so.62.0.0
    b6ca5000-b6cb2000 r-xp 00000000 08:03
    173102 /usr/lib/libgnome-keyring.so.0.1.1
    b6cb2000-b6cb4000 rw-p 0000c000 08:03
    173102 /usr/lib/libgnome-keyring.so.0.1.1
    b6cb4000-b6cc9000 r-xp 00000000 08:03
    165472 /usr/lib/libart_lgpl_2.so.2.3.19
    b6cc9000-b6ccb000 rw-p 00014000 08:03
    165472 /usr/lib/libart_lgpl_2.so.2.3.19
    b6ccb000-b6cf9000 r-xp 00000000 08:03
    173142 /usr/lib/libgnomecanvas-2.so.0.2000.0
    b6cf9000-b6cfb000 rw-p 0002e000 08:03
    173142 /usr/lib/libgnomecanvas-2.so.0.2000.0
    b6cfb000-b6d56000 r-xp 00000000 08:03
    1096966 /usr/lib/libbonoboui-2.so.0.0.0
    b6d56000-b6d59000 rw-p 0005a000 08:03
    1096966 /usr/lib/libbonoboui-2.so.0.0.0
    b6d59000-b6de0000 r-xp 00000000 08:03
    1096347 /usr/lib/libgnomeui-2.so.0.2000.0
    b6de0000-b6de1000 r--p 00087000 08:03
    1096347 /usr/lib/libgnomeui-2.so.0.2000.0
    b6de1000-b6de4000 rw-p 00088000 08:03
    1096347 /usr/lib/libgnomeui-2.so.0.2000.0
    b6de4000-b6df7000 r-xp 00000000 08:03 2077390 /lib/libnsl-2.6.1.so
    b6df7000-b6df9000 rw-p 00012000 08:03 2077390 /lib/libnsl-2.6.1.so
    b6df9000-b6dfb000 rw-p b6df9000 00:00 0
    b6dfb000-b6eab000 r-xp 00000000 08:03 169627 /usr/lib/libasound.so.2.0.0
    b6eab000-b6ead000 r--p 000b0000 08:03 169627 /usr/lib/libasound.so.2.0.0
    b6ead000-b6eaf000 rw-p 000b2000 08:03 169627 /usr/lib/libasound.so.2.0.0
    b6eaf000-b6eb3000 r-xp 00000000 08:03
    175635 /usr/lib/libORBitCosNaming-2.so.0.1.0
    b6eb3000-b6eb5000 rw-p 00003000 08:03
    175635 /usr/lib/libORBitCosNaming-2.so.0.1.0
    b6eb5000-b6eb7000 r-xp 00000000 08:03 2077137 /lib/libutil-2.6.1.so
    b6eb7000-b6eb9000 rw-p 00001000 08:03 2077137 /lib/libutil-2.6.1.so
    b6eb9000-b6ec8000 r-xp 00000000 08:03 2077816 /lib/libresolv-2.6.1.so
    b6ec8000-b6eca000 rw-p 0000e000 08:03 2077816 /lib/libresolv-2.6.1.so
    b6eca000-b6ecc000 rw-p b6eca000 00:00 0
    b6ecc000-b6eda000 r-xp 00000000 08:03
    179363 /usr/lib/libavahi-client.so.3.2.2
    b6eda000-b6edc000 rw-p 0000d000 08:03
    179363 /usr/lib/libavahi-client.so.3.2.2
    b6edc000-b6ee6000 r-xp 00000000 08:03
    173047 /usr/lib/libavahi-common.so.3.4.4
    b6ee6000-b6ee8000 rw-p 00009000 08:03
    173047 /usr/lib/libavahi-common.so.3.4.4
    b6ee8000-b6eea000 r-xp 00000000 08:03
    172231 /usr/lib/libavahi-glib.so.1.0.1
    b6eea000-b6eec000 rw-p 00001000 08:03
    172231 /usr/lib/libavahi-glib.so.1.0.1
    b6eec000-b7019000 r-xp 00000000 08:03 1128355 /usr/lib/libcrypto.so.0.9.8
    b7019000-b7020000 r--p 0012c000 08:03 1128355 /usr/lib/libcrypto.so.0.9.8
    b7020000-b702e000 rw-p 00133000 08:03 1128355 /usr/lib/libcrypto.so.0.9.8
    b702e000-b7032000 rw-p b702e000 00:00 0
    b7032000-b7071000 r-xp 00000000 08:03 1128356 /usr/lib/libssl.so.0.9.8
    b7071000-b7075000 rw-p 0003e000 08:03 1128356 /usr/lib/libssl.so.0.9.8
    b7075000-b70a6000 r-xp 00000000 08:03 2077180 /lib/libdbus-1.so.3.2.0
    b70a6000-b70a8000 rw-p 00030000 08:03 2077180 /lib/libdbus-1.so.3.2.0
    b70a8000-b70c2000 r-xp 00000000 08:

    This is similar to what happens when I try to launch the installed (from
    repo) version as well.. In short, no versio will run anymore. Buffer
    overflows are not nice and so I would like to fix this.

    Thanks..

    P.S. Sorry for the long post :-(

  2. Re: Firefox buffer overflow

    Michael Soibelman wrote:

    > This is similar to what happens when I try to launch the installed (from
    > repo) version as well.. *In short, no versio will run anymore. *Buffer
    > overflows are not nice and so I would like to fix this.
    >
    > Thanks..
    >
    > P.S. *Sorry for the long pos


    Have you renamed the .mozilla directory in your home directory to see if
    something there interferes?

    --
    Later,
    Darrell Stec darstec@neo.rr.com

    Webpage Sorcery
    http://webpagesorcery.com
    We Put the Magic in Your Webpages

  3. Re: Firefox buffer overflow

    Am Fri, 25 Apr 2008 14:05:22 -0700 schrieb Michael Soibelman:

    > I am not able to run Firefox. I don't know why this happened but I've
    > tried several versions and none work. I've included a console session in
    > hopes someone might understand what might have gone wrong. This is the
    > downloaded from Mozilla web site source version..
    >
    >


    Did you do an update of audit 1.5.5-13.4


    A bug in the audit_log_user_command() function could lead to a buffer
    overflow. No program in openSUSE uses that function. Third party
    applications could be affected though (CVE-2008-1628)

    Reinstall ver. 1.5.5-13.2

    eg

  4. Re: Firefox buffer overflow

    edgar gottlieb wrote:

    > Am Fri, 25 Apr 2008 14:05:22 -0700 schrieb Michael Soibelman:
    >
    >> I am not able to run Firefox. I don't know why this happened but I've
    >> tried several versions and none work. I've included a console session in
    >> hopes someone might understand what might have gone wrong. This is the
    >> downloaded from Mozilla web site source version..
    >>
    >>

    >
    > Did you do an update of audit 1.5.5-13.4
    >
    >
    > A bug in the audit_log_user_command() function could lead to a buffer
    > overflow. No program in openSUSE uses that function. Third party
    > applications could be affected though (CVE-2008-1628)
    >
    > Reinstall ver. 1.5.5-13.2
    >
    > eg


    Followed your advice but it didn't help.. Also, I'm now having a similar
    problem with gimp. Here's what I'm getting:

    *** buffer overflow detected ***: gimp terminated
    ======= Backtrace: =========
    /lib/libc.so.6(__chk_fail+0x41)[0xb75943b1]
    /lib/libc.so.6[0xb7593b98]
    /lib/libc.so.6(_IO_default_xsputn+0xb7)[0xb7523b97]
    /lib/libc.so.6(_IO_vfprintf+0xc8b)[0xb74fc16b]
    /lib/libc.so.6(__vsprintf_chk+0xad)[0xb7593c4d]
    /lib/libc.so.6(__sprintf_chk+0x30)[0xb7593b80]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb61dd21e]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb61ddb50]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb61f678b]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so[0xb61f81cf]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb76eb066]
    /usr/local/lib/libgobject-2.0.so.0[0xb76d03e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb76d0ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb76d16f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb76d1860]
    /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so(theme_create_rc_style+0x36
    [0xb61db5f6]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_theme_engine_create_rc_style+0x1c
    [0xb7df896c]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7d768ea]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7d78b56]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7d7974b]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7d79be2]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7d79d6e]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_rc_reparse_all_for_settings+0x104
    [0xb7d7a154]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_settings_get_for_screen+0xb4)[0xb7d959f4]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_settings_get_default+0x25)[0xb7d95b85]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7daf78c]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb76eb066]
    /usr/local/lib/libgobject-2.0.so.0[0xb76d03e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb76d0ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb76d16f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb76d1860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_style_new+0x27)[0xb7da7cb7]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_widget_get_default_style+0x2d)[0xb7e4ddfd]
    /usr/lib/libgtk-x11-2.0.so.0[0xb7e4dea4]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x2aa)[0xb76eaeba]
    /usr/local/lib/libgobject-2.0.so.0[0xb76d03e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb76d0ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb76d16f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb76d1860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_window_new+0x34)[0xb7e634c4]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_tooltips_force_window+0x50)[0xb7e08620]
    /usr/local/lib/libgobject-2.0.so.0(g_type_create_instance+0x456)[0xb76eb066]
    /usr/local/lib/libgobject-2.0.so.0[0xb76d03e2]
    /usr/local/lib/libgobject-2.0.so.0(g_object_newv+0x318)[0xb76d0ba8]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new_valist+0x281)[0xb76d16f1]
    /usr/local/lib/libgobject-2.0.so.0(g_object_new+0x40)[0xb76d1860]
    /usr/lib/libgtk-x11-2.0.so.0(gtk_tooltips_new+0x27)[0xb7e086d7]
    /usr/lib/libgimpwidgets-2.0.so.0[0xb7fc7e07]
    /usr/lib/libgimpwidgets-2.0.so.0(gimp_widgets_init+0x12b)[0xb7fe894b]
    gimp[0x806a88c]
    gimp[0x8067e08]
    gimp[0x8068d18]
    /lib/libc.so.6(__libc_start_main+0xe0)[0xb74d4fe0]
    gimp[0x8067a71]
    ======= Memory map: ========
    08048000-083c5000 r-xp 00000000 08:03 170237 /usr/bin/gimp-2.4
    083c5000-083da000 rw-p 0037c000 08:03 170237 /usr/bin/gimp-2.4
    083da000-08467000 rw-p 083da000 00:00 0 [heap]
    b6197000-b61a1000 r-xp 00000000 08:03 2077734 /lib/libgcc_s.so.1
    b61a1000-b61a3000 rw-p 00009000 08:03 2077734 /lib/libgcc_s.so.1
    b61d6000-b61fd000 r-xp 00000000 08:03
    594240 /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so
    b61fd000-b61fe000 r--p 00026000 08:03
    594240 /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so
    b61fe000-b61ff000 rw-p 00027000 08:03
    594240 /usr/lib/gtk-2.0/2.10.0/engines/libqtcurve.so
    b61ff000-b6221000 rw-p b61ff000 00:00 0
    b6221000-b6300000 ---p b6221000 00:00 0
    b6329000-b632a000 ---p b6329000 00:00 0
    b632a000-b6b2a000 rw-p b632a000 00:00 0
    b6b2a000-b6b2b000 ---p b6b2a000 00:00 0
    b6b2b000-b732b000 rw-p b6b2b000 00:00 0
    b732b000-b7360000 r--s 00000000 08:03 901194 /var/run/nscd/passwd
    b7360000-b739f000 r--p 00000000 08:03
    245407 /usr/lib/locale/en_US.utf8/LC_CTYPE
    b739f000-b747f000 r--p 00000000 08:03
    245410 /usr/lib/locale/en_US.utf8/LC_COLLATE
    b747f000-b7482000 rw-p b747f000 00:00 0
    b7482000-b748a000 r-xp 00000000 08:03
    175586 /usr/lib/libXcursor.so.1.0.2
    b748a000-b748c000 rw-p 00007000 08:03
    175586 /usr/lib/libXcursor.so.1.0.2
    b748c000-b7491000 r-xp 00000000 08:03 175612 /usr/lib/libXrandr.so.2.1.0
    b7491000-b7493000 rw-p 00005000 08:03 175612 /usr/lib/libXrandr.so.2.1.0
    b7493000-b749a000 r-xp 00000000 08:03 175603 /usr/lib/libXi.so.6.0.0
    b749a000-b749c000 rw-p 00006000 08:03 175603 /usr/lib/libXi.so.6.0.0
    b749c000-b749e000 r-xp 00000000 08:03
    175605 /usr/lib/libXinerama.so.1.0.0
    b749e000-b74a0000 rw-p 00001000 08:03
    175605 /usr/lib/libXinerama.so.1.0.0
    b74a0000-b74a1000 rw-p b74a0000 00:00 0
    b74a1000-b74ae000 r-xp 00000000 08:03 165915 /usr/lib/libXext.so.6.4.0
    b74ae000-b74b0000 rw-p 0000c000 08:03 165915 /usr/lib/libXext.so.6.4.0
    b74b0000-b74b4000 r-xp 00000000 08:03 165917 /usr/lib/libXfixes.so.3.1.0
    b74b4000-b74b6000 rw-p 00003000 08:03 165917 /usr/lib/libXfixes.so.3.1.0
    b74b6000-b74b8000 r-xp 00000000 08:03
    175588 /usr/lib/libXdamage.so.1.1.0
    b74b8000-b74ba000 rw-p 00001000 08:03
    175588 /usr/lib/libXdamage.so.1.1.0
    b74ba000-b74bc000 r-xp 00000000 08:03
    175584 /usr/lib/libXcomposite.so.1.0.0
    b74bc000-b74be000 rw-p 00001000 08:03
    175584 /usr/lib/libXcomposite.so.1.0.0
    b74be000-b74bf000 rw-p b74be000 00:00 0
    b74bf000-b75ec000 r-xp 00000000 08:03 2076712 /lib/libc-2.6.1.so
    b75ec000-b75ed000 r--p 0012c000 08:03 2076712 /lib/libc-2.6.1.so
    b75ed000-b75ef000 rw-p 0012d000 08:03 2076712 /lib/libc-2.6.1.so
    b75ef000-b75f2000 rw-p b75ef000 00:00 0
    b75f2000-b76bf000 r-xp 00000000 08:03
    173016 /usr/local/lib/libglib-2.0.so.0.1600.3
    b76bf000-b76c0000 r--p 000cd000 08:03
    173016 /usr/local/lib/libglib-2.0.so.0.1600.3
    b76c0000-b76c1000 rw-p 000ce000 08:03
    173016 /usr/local/lib/libglib-2.0.so.0.1600.3
    b76c1000-b76fa000 r-xp 00000000 08:03
    174962 /usr/local/lib/libgobject-2.0.so.0.1600.3
    b76fa000-b76fb000 r--p 00038000 08:03
    174962 /usr/local/lib/libgobject-2.0.so.0.1600.3
    b76fb000-b76fc000 rw-p 00039000 08:03
    174962 /usr/local/lib/libgobject-2.0.so.0.1600.3
    b76fc000-b772d000 r-xp 00000000 08:03 2077180 /lib/libdbus-1.so.3.2.0
    b772d000-b772f000 rw-p 00030000 08:03 2077180 /lib/libdbus-1.so.3.2.0
    b772f000-b7742000 r-xp 00000000 08:03 2077389 /lib/libnsl-2.6.1.so
    b7742000-b7744000 rw-p 00012000 08:03 2077389 /lib/libnsl-2.6.1.so
    b7744000-b7746000 rw-p b7744000 00:00 0
    b7746000-b7760000 r-xp 00000000 08:03
    171936 /usr/lib/libdbus-glib-1.so.2.1.0
    b7760000-b7762000 rw-p 0001a000 08:03
    171936 /usr/lib/libdbus-glib-1.so.2.1.0
    b7762000-b7763000 rw-p b7762000 00:00 0
    b7763000-b7774000 r-xp 00000000 08:03 2076775 /lib/libz.so.1.2.3
    b7774000-b7776000 rw-p 00010000 08:03 2076775 /lib/libz.so.1.2.3
    b7776000-b77e1000 r-xp 00000000 08:03
    168756 /usr/lib/libfreetype.so.6.3.16
    b77e1000-b77e3000 r--p 0006b000 08:03
    168756 /usr/lib/libfreetype.so.6.3.16
    b77e3000-b77e5000 rw-p 0006d000 08:03
    168756 /usr/lib/libfreetype.so.6.3.16
    b77e5000-b7803000 r-xp 00000000 08:03 2076793 /lib/libexpat.so.1.5.2
    b7803000-b7804000 r--p 0001e000 08:03 2076793 /lib/libexpat.so.1.5.2
    b7804000-b7806000 rw-p 0001f000 08:03 2076793 /lib/libexpat.so.1.5.2
    b7806000-b7829000 r-xp 00000000 08:03
    165774 /usr/lib/libfontconfig.so.1.2.0
    b7829000-b7830000 r--p 00022000 08:03
    165774 /usr/lib/libfontconfig.so.1.2.0
    b7830000-b7832000 rw-p 00029000 08:03
    165774 /usr/lib/libfontconfig.so.1.2.0
    b7832000-b7834000 r-xp 00000000 08:03 2077161 /lib/libdl-2.6.1.so
    b7834000-b7836000 rw-p 00001000 08:03 2077161 /lib/libdl-2.6.1.so
    b7836000-b7839000 r-xp 00000000 08:03
    174956 /usr/local/lib/libgmodule-2.0.so.0.1600.3
    b7839000-b783a000 r--p 00002000 08:03
    174956 /usr/local/lib/libgmodule-2.0.so.0.1600.3
    b783a000-b783b000 rw-p 00003000 08:03 174956 /usr/logimp: terminated:
    Aborted


    So it seems something is really f*@#% up. I've checked for rootkits to be
    safe but nothing there. So I am looking at the list of programs (files)
    above and I'll reinstall each one and see what happens... Arrrggggg !!

    Of course if I knew what was causing this problem I could just fix it but
    since I don't know I'll 'try' to fix it... Oh well. How many more days
    till 11.0 ?? About 55 according to Houghi. I'll make it somehow.

  5. Re: Firefox buffer overflow

    Michael Soibelman wrote:

    > edgar gottlieb wrote:
    >
    >> Am Fri, 25 Apr 2008 14:05:22 -0700 schrieb Michael Soibelman:
    >>
    >>> I am not able to run Firefox. I don't know why this happened but I've
    >>> tried several versions and none work. I've included a console session in
    >>> hopes someone might understand what might have gone wrong. This is the
    >>> downloaded from Mozilla web site source version..
    >>>
    >>>

    >>
    >> Did you do an update of audit 1.5.5-13.4
    >>
    >>
    >> A bug in the audit_log_user_command() function could lead to a buffer
    >> overflow. No program in openSUSE uses that function. Third party
    >> applications could be affected though (CVE-2008-1628)
    >>
    >> Reinstall ver. 1.5.5-13.2
    >>
    >> eg

    >
    > Followed your advice but it didn't help.. Also, I'm now having a similar
    > problem with gimp. Here's what I'm getting:
    >
    > *** buffer overflow detected ***: gimp terminated
    > ======= Backtrace: =========
    > /lib/libc.so.6(__chk_fail+0x41)[0xb75943b1]
    > /lib/libc.so.6[0xb7593b98]


    Updated about 70+ packages that just showed up in the last few hours and now
    everything is o.k. Don't know which package was causing the problems but
    at least it's fixed now.



  6. Re: Firefox buffer overflow

    Michael Soibelman wrote:

    > I am not able to run Firefox. I don't know why this happened but I've
    > tried several versions and none work. I've included a console session in
    > hopes
    > someone might understand what might have gone wrong. This is the
    > downloaded from Mozilla web site source version..
    >
    > mike@jupiter:~/downloads/bz2/firefox> ./firefox
    > *** buffer overflow detected ***: ./firefox-bin terminated
    > ======= Backtrace: =========


    SCHNIPP

    > This is similar to what happens when I try to launch the installed (from
    > repo) version as well.. In short, no versio will run anymore. Buffer
    > overflows are not nice and so I would like to fix this.
    >
    > Thanks..
    >
    > P.S. Sorry for the long post :-(


    Hallo Michael,

    dies wurde durch qtcurve-gtk2 der Community-Repositories verursacht. Mit der
    aktuelle Version 0.59.0-6.1 funktioniert es wieder.

    Chris

  7. Re: Firefox buffer overflow

    Chris H. Tscheuschner wrote:

    > Michael Soibelman wrote:
    >
    >> I am not able to run Firefox. I don't know why this happened but I've
    >> tried several versions and none work. I've included a console session in
    >> hopes
    >> someone might understand what might have gone wrong. This is the
    >> downloaded from Mozilla web site source version..
    >>
    >> mike@jupiter:~/downloads/bz2/firefox> ./firefox
    >> *** buffer overflow detected ***: ./firefox-bin terminated
    >> ======= Backtrace: =========

    >
    > SCHNIPP
    >
    >> This is similar to what happens when I try to launch the installed (from
    >> repo) version as well.. In short, no versio will run anymore. Buffer
    >> overflows are not nice and so I would like to fix this.
    >>
    >> Thanks..
    >>
    >> P.S. Sorry for the long post :-(

    >
    > Hallo Michael,
    >
    > dies wurde durch qtcurve-gtk2 der Community-Repositories verursacht. Mit
    > der aktuelle Version 0.59.0-6.1 funktioniert es wieder.
    >
    > Chris


    Sorry - should have been in english..

    This was caused by yesterdays version of qtcurve-gtk2. After applying todays
    version 0.59.0-6.1 everything seems to be OK again.

    Chris

  8. Re: Firefox buffer overflow

    On Sat, 26 Apr 2008 11:34:56 +0200, Chris H. Tscheuschner wrote:

    > Chris H. Tscheuschner wrote:
    >



    >> Hallo Michael,
    >>
    >> dies wurde durch qtcurve-gtk2 der Community-Repositories verursacht.
    >> Mit der aktuelle Version 0.59.0-6.1 funktioniert es wieder.
    >>
    >> Chris

    >
    > Sorry - should have been in english..
    >
    > This was caused by yesterdays version of qtcurve-gtk2. After applying
    > todays version 0.59.0-6.1 everything seems to be OK again.


    Confirm. I ended up with Fusion-icon, Pan, Evolution and a couple of
    other programs crashing with buffer overflows. Latest qtcurve-gtk2 update
    this morning fixed everything. There was much cursing yesterday. Back to
    sweetness and light today!

    Regards
    Gordon

  9. Re: Firefox buffer overflow

    Gordon Darling wrote:

    > On Sat, 26 Apr 2008 11:34:56 +0200, Chris H. Tscheuschner wrote:
    >
    >> Chris H. Tscheuschner wrote:
    >>

    >
    >
    >>> Hallo Michael,
    >>>
    >>> dies wurde durch qtcurve-gtk2 der Community-Repositories verursacht.
    >>> Mit der aktuelle Version 0.59.0-6.1 funktioniert es wieder.
    >>>
    >>> Chris

    >>
    >> Sorry - should have been in english..
    >>
    >> This was caused by yesterdays version of qtcurve-gtk2. After applying
    >> todays version 0.59.0-6.1 everything seems to be OK again.

    >
    > Confirm. I ended up with Fusion-icon, Pan, Evolution and a couple of
    > other programs crashing with buffer overflows. Latest qtcurve-gtk2 update
    > this morning fixed everything. There was much cursing yesterday. Back to
    > sweetness and light today!
    >
    > Regards
    > Gordon


    Yes, that's what it was and I fixed it by updating.

    Thanks.

  10. Re: Firefox buffer overflow

    On Sat, 26 Apr 2008 19:32:06 +0000, Michael Soibelman wrote:

    > Gordon Darling wrote:
    >
    >> On Sat, 26 Apr 2008 11:34:56 +0200, Chris H. Tscheuschner wrote:
    >>
    >>> Chris H. Tscheuschner wrote:
    >>>

    >>
    >>
    >>> This was caused by yesterdays version of qtcurve-gtk2. After applying
    >>> todays version 0.59.0-6.1 everything seems to be OK again.

    >>
    >> Confirm. I ended up with Fusion-icon, Pan, Evolution and a couple of
    >> other programs crashing with buffer overflows. Latest qtcurve-gtk2
    >> update this morning fixed everything. There was much cursing yesterday.
    >> Back to sweetness and light today!
    >>
    >> Regards
    >> Gordon

    >
    > Yes, that's what it was and I fixed it by updating.


    Irritating while it lasted but full marks to SuSE for the quick fix.
    What a contrast to Micro$oft!

    Regards
    Gordon

+ Reply to Thread