md5sum, sha1sum, etc: handle invalid input (i.e., don't segfault)

* src/md5sum.c (bsd_split_3): Return right away if s_len == 0. * tests/misc/md5sum (bsd-segv): New test for the above. * tests/misc/sha1sum (bsd-segv): Likewise. * NEWS: Mention the bug fix. Reported by Cristian Cadar, Daniel Dunbar and Dawson Engler.
author: Jim Meyering <meyering@redhat.com> 2008-04-15 08:19:11 +0200
committer: Jim Meyering <meyering@redhat.com> 2008-04-15 08:46:48 +0200
commit: 7cb24684cc4ef96bb25dfc1c819acfc3b98d9442 (patch)
tree: b0d71c4140509c1906993d06e5c1497fa04a13d8 /NEWS
parent: 739cf4e8325775dd6400984b3b52e67b3102e556 (diff)
download: coreutils-7cb24684cc4ef96bb25dfc1c819acfc3b98d9442.tar.xz
1 files changed, 5 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index e208b30b8..3a584e9cc 100644
--- a/NEWS
+++ b/NEWS
@@ -20,6 +20,11 @@ GNU coreutils NEWS                                    -*- outline -*-
   ls no longer segfaults on files in /proc when linked with an older version
   of libselinux.  E.g., ls -l /proc/sys would dereference a NULL pointer.
 
+  md5sum would segfault for invalid BSD-style input, e.g.,
+  echo 'MD5 (' | md5sum -c -  Now, md5sum ignores that line.
+  sha1sum, sha224sum, sha384sum, and sha512sum are affected, too.
+  [bug introduced in coreutils-5.1.0]
+
   "mkdir -Z x dir" no longer segfaults when diagnosing invalid context "x"
   mkfifo and mknod would fail similarly.  Now they're fixed.
author	Jim Meyering <meyering@redhat.com>	2008-04-15 08:19:11 +0200
committer	Jim Meyering <meyering@redhat.com>	2008-04-15 08:46:48 +0200
commit	7cb24684cc4ef96bb25dfc1c819acfc3b98d9442 (patch)
tree	b0d71c4140509c1906993d06e5c1497fa04a13d8 /NEWS
parent	739cf4e8325775dd6400984b3b52e67b3102e556 (diff)
download	coreutils-7cb24684cc4ef96bb25dfc1c819acfc3b98d9442.tar.xz