Bug 4725 - Samba child segfaults when scanned using MBSA
Summary: Samba child segfaults when scanned using MBSA
Status: RESOLVED FIXED
Alias: None
Product: Samba 3.0
Classification: Unclassified
Component: File Services (show other bugs)
Version: 3.0.24
Hardware: x64 Linux
: P3 minor
Target Milestone: none
Assignee: Samba Bugzilla Account
QA Contact: Samba QA Contact
URL: http://bugs.debian.org/424683
Keywords:
Depends on:
Blocks:
 
Reported: 2007-06-22 11:34 UTC by Debian samba package maintainers (PUBLIC MAILING LIST)
Modified: 2007-06-22 15:04 UTC (History)
0 users

See Also:

Attachments
Patch (763 bytes, patch)
2007-06-22 14:31 UTC, Jeremy Allison 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Debian samba package maintainers (PUBLIC MAILING LIST) 2007-06-22 11:34:40 UTC 
Hello,

this is a forwarded bug:

"While scanning our domain this morning I noticed that smbd will crash in
api_eventlog_open_eventlog (#4 in the backtrace below) when scanned by
Microsoft's Baseline Security Analyzer. I've marked this as minor because it
doesn't interfere with anything else.

[2007/05/16 11:14:53, 0] lib/util.c:smb_panic(1599)
  PANIC (pid 5495): internal error
[2007/05/16 11:14:53, 0] lib/util.c:log_stack_trace(1706)
  BACKTRACE: 16 stack frames:
   #0 /usr/sbin/smbd(log_stack_trace+0x23) [0x822c253]
   #1 /usr/sbin/smbd(smb_panic+0x46) [0x822c346]
   #2 /usr/sbin/smbd [0x821a51a]
   #3 [0xffffe500]
   #4 /usr/sbin/smbd [0x816b38d]
   #5 /usr/sbin/smbd(api_rpcTNP+0x15f) [0x818b5bf]
   #6 /usr/sbin/smbd(api_pipe_request+0x183) [0x818bba3]
   #7 /usr/sbin/smbd [0x8185ede]
   #8 /usr/sbin/smbd [0x809bced]
   #9 /usr/sbin/smbd [0x809c1dc]
   #10 /usr/sbin/smbd(reply_trans+0x56f) [0x809ce4f]
   #11 /usr/sbin/smbd [0x80ea5c4]
   #12 /usr/sbin/smbd(smbd_process+0x6f8) [0x80eb788]
   #13 /usr/sbin/smbd(main+0x10df) [0x82c36cf]
   #14 /lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xc8) [0xf7bd4ea8]
   #15 /usr/sbin/smbd [0x8082b11]
"

I will try to reproduce this with the latest version of samba but maybe you already know something.

thx

noel@d.o
Comment 1 Jeremy Allison 2007-06-22 13:40:50 UTC 
Can you load a version with symbols so we can get a backtrace with line numbers please ?
Thanks,
Jeremy.
Comment 2 Jeremy Allison 2007-06-22 14:17:06 UTC 
How are you recreating this ? I downloaded MBSA 2.0.1 and can't reproduce this. *Exactly* how are you configuring this ?
Jeremy.
Comment 3 Jeremy Allison 2007-06-22 14:31:41 UTC 
Created attachment 2777 [details]
Patch

Never mind found the bug. Will be fixed for 3.0.25b.
Jeremy.
Comment 4 Jeremy Allison 2007-06-22 14:34:27 UTC 
Fixed in rev. 23591.
Jeremy.
Comment 5 Debian samba package maintainers (PUBLIC MAILING LIST) 2007-06-22 15:04:34 UTC 
Thanks alot for this very fast fixing.