[Pkg-openssl-devel] Bug#666405: openssl: dovecot (imap-login) segfault on libcrypto.so.1.0.0 (1.0.1-2)

Mehdi ABAAKOUK sileht at sileht.net
Fri Mar 30 14:09:10 UTC 2012


Package: openssl
Version: 1.0.1-2
Severity: important

When some imap client use SSL or TLS connection to connect my dovecot imap server,
the daemon imap-login segfault.

To workaround the problem, I have downgrade libssl to wheezy version (1.0.0h-1).

Below the backtrace with version 1.0.1-2

Without symbols:

#0  0x00007fe2b98b8431 in RC4 () from /usr/lib/x86_64-linux-gnu/libcrypto.so.1.0.0
#1  0x000000000000012d in ?? ()
#2  0x00000000000000df in ?? ()
#3  0x0000000001ff16a0 in ?? ()
#4  0x00007fe2b991e9c9 in ?? () from /usr/lib/x86_64-linux-gnu/libcrypto.so.1.0.0
#5  0x00007fe2b9c26b8f in ?? () from /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
#6  0x00007fe2b9c1de18 in ?? () from /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
#7  0x00007fe2b9c1e144 in ?? () from /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
#8  0x00007fe2ba0ef0cf in ?? () from /usr/lib/dovecot/libdovecot-login.so.0
#9  0x00007fe2ba0ef1c8 in ?? () from /usr/lib/dovecot/libdovecot-login.so.0
#10 0x00007fe2b9ea4488 in io_loop_call_io () from /usr/lib/dovecot/libdovecot.so.0
#11 0x00007fe2b9ea5517 in io_loop_handler_run () from /usr/lib/dovecot/libdovecot.so.0
#12 0x00007fe2b9ea4418 in io_loop_run () from /usr/lib/dovecot/libdovecot.so.0
#13 0x00007fe2b9e92623 in master_service_run () from /usr/lib/dovecot/libdovecot.so.0
#14 0x00007fe2ba0e8022 in main () from /usr/lib/dovecot/libdovecot-login.so.0
#15 0x00007fe2b92a6ead in __libc_start_main () from /lib/x86_64-linux-gnu/libc.so.6
#16 0x0000000000402349 in ?? ()
#17 0x00007fffce1fdf48 in ?? ()
#18 0x000000000000001c in ?? ()
#19 0x0000000000000002 in ?? ()
#20 0x00007fffce1ffeba in ?? ()
#21 0x00007fffce1ffecd in ?? ()
#22 0x0000000000000000 in ?? ()


With symbols (ie: libssl1.0.0-dbg:amd64)

#0  RC4 () at rc4-x86_64.s:343

warning: Source file is more recent than executable.
343             movl    (%rdi,%rax,4),%edx
(gdb) bt
#0  RC4 () at rc4-x86_64.s:343
#1  0x000000000000012d in ?? ()
#2  0x00000000000000df in ?? ()
#3  0x00000000020b5660 in ?? ()
#4  0x00007fc075f6a9c9 in rc4_hmac_md5_cipher (ctx=<optimized out>,
    out=0x20aae98 ".\324\300\377Ǽ|#\242\300\233\025T\341\002}\237\242\240\273G\260\257\214z\321\001HKȫRA\257HC0\"0\257N*1C/,$\252-N1&%&1\261\"/0C*'C\246-\"!/&C*\nb% SO\261\067\303\060,17^'*\260\063/\":C7+\261&\"'^1&%\246\061&- &0C\267+1&\"'^1\246%0C.6/7\252\"33&-'C\266-0&/& 7\303 +*/'1&\255C-\".&03\242 &C6*'3\257\066\060C/*07\316&;7&-'&\247C*R[-/&\265&/^RC ,\255"..., in=<optimized out>, len=0) at e_rc4_hmac_md5.c:163
#5  0x00007fc076272b8f in tls1_enc (s=0x209c120, send=1) at t1_enc.c:828
#6  0x00007fc076269e18 in do_ssl3_write (s=0x209c120, type=23,
    buf=0x209cf34 "2 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CON"..., len=285, create_empty_fragment=0) at s3_pkt.c:808
#7  0x00007fc07626a144 in ssl3_write_bytes (s=0x209c120, type=23, buf_=0x209cf34, len=<optimized out>) at s3_pkt.c:605
#8  0x00007fc07673b0cf in ?? () from /usr/lib/dovecot/libdovecot-login.so.0
#9  0x00007fc07673b1c8 in ?? () from /usr/lib/dovecot/libdovecot-login.so.0
#10 0x00007fc0764f0488 in io_loop_call_io () from /usr/lib/dovecot/libdovecot.so.0
#11 0x00007fc0764f1517 in io_loop_handler_run () from /usr/lib/dovecot/libdovecot.so.0
#12 0x00007fc0764f0418 in io_loop_run () from /usr/lib/dovecot/libdovecot.so.0
#13 0x00007fc0764de623 in master_service_run () from /usr/lib/dovecot/libdovecot.so.0
#14 0x00007fc076734022 in main () from /usr/lib/dovecot/libdovecot-login.so.0
#15 0x00007fc0758f2ead in __libc_start_main () from /lib/x86_64-linux-gnu/libc.so.6
#16 0x0000000000402349 in ?? ()
#17 0x00007fffbca25e78 in ?? ()
#18 0x000000000000001c in ?? ()
#19 0x0000000000000002 in ?? ()
#20 0x00007fffbca27eb9 in ?? ()
#21 0x00007fffbca27ecc in ?? ()
#22 0x0000000000000000 in ?? ()



-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-1-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8 at euro, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssl depends on:
ii  libc6        2.13-27
ii  libssl1.0.0  1.0.1-2
ii  zlib1g       1:1.2.6.dfsg-2

openssl recommends no packages.

Versions of packages openssl suggests:
ii  ca-certificates  20120212

-- no debconf information





More information about the Pkg-openssl-devel mailing list