Mageia Bugzilla – Attachment 10289 Details for
Bug 23310
openslp new security issue CVE-2017-17833
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
Possible procedure for PoC test
procedure (text/plain), 462 bytes, created by
Len Lawrence
on 2018-07-21 18:59:17 CEST
(
hide
)
Description:
Possible procedure for PoC test
Filename:
MIME Type:
Creator:
Len Lawrence
Created:
2018-07-21 18:59:17 CEST
Size:
462 bytes
patch
obsolete
>Pre-update: >Edit script for local user. >$ su ># python openslp-2.0.0-double-free-poc.py ># systemctl start slpd >Observe the completion of the script connection dialogue. ># slpd -d -c /etc/slp.conf >This should return something like this: > xrealloc(0x137ba50, 1449) = = 0x138dd30 > xrealloc(0x137ba50, 69) = > *** Error in 'slpd': double free or corruption (fasttop): 0x000000000137ba50 *** > >The uncertainties arise because this has not actually been tested. > > > >
Pre-update: Edit script for local user. $ su # python openslp-2.0.0-double-free-poc.py # systemctl start slpd Observe the completion of the script connection dialogue. # slpd -d -c /etc/slp.conf This should return something like this: xrealloc(0x137ba50, 1449) = = 0x138dd30 xrealloc(0x137ba50, 69) = *** Error in 'slpd': double free or corruption (fasttop): 0x000000000137ba50 *** The uncertainties arise because this has not actually been tested.
View Attachment As Raw
Actions:
View
Attachments on
bug 23310
:
10288
| 10289