Subject: libssh2-devel post from noreply@sourceforge.net requires approval

libssh2-devel post from noreply@sourceforge.net requires approval

From: <libssh2-devel-owner_at_cool.haxx.se>
Date: Wed, 22 Jul 2009 22:56:49 +0200

As list administrator, your authorization is requested for the
following mailing list posting:

    List: libssh2-devel_at_cool.haxx.se
    From: noreply_at_sourceforge.net
    Subject: [ libssh2-Bugs-2825536 ] Double free or corruption of pointer on failed PW auth
    Reason: Post by non-member to a members-only list

At your convenience, visit:

    http://cool.haxx.se/cgi-bin/mailman/admindb/libssh2-devel
        
to approve or deny the request.

attached mail follows:

Bugs item #2825536, was opened at 2009-07-22 22:23
Message generated for change (Comment added) made by bagder
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=703942&aid=2825536&group_id=125852

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: misc
Group: None
Status: Open
Resolution: None
Priority: 5
Private: No
Submitted By: Chris Adams (cmadams)
>Assigned to: Daniel Stenberg (bagder)
Summary: Double free or corruption of pointer on failed PW auth

Initial Comment:
I have a perl script that uses libssh2 1.1 (via Net::SSH2) on Linux (RHEL 5 x86_64), and under some conditions, it crashes if it fails to authenticate (bad password) to a host with a glibc error:

*** glibc detected *** conf-sav.pl: fetching newtree/scn/sw1.bhmnoc: double free or corruption (!prev): 0x0000000002394820 ***

If I load it up in gdb with the libssh2 debuginfo installed, I see the crash in session.c at line 843:

        LIBSSH2_FREE(session, session->userauth_list_data);

----------------------------------------------------------------------

>Comment By: Daniel Stenberg (bagder)
Date: 2009-07-22 22:56

Message:
Please provide a proper example in C that repeats this problem.

----------------------------------------------------------------------

You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=703942&aid=2825536&group_id=125852

attached mail follows:

If you reply to this message, keeping the Subject: header intact,
Mailman will discard the held message. Do this if the message is
spam. If you reply to this message and include an Approved: header
with the list password in it, the message will be approved for posting
to the list. The Approved: header can also appear in the first line
of the body of the reply.
Received on 2009-07-22