33-Year-Old Unix Bug Fixed In OpenBSD

Ste sends along the cheery little story of Otto Moerbeek, one of the OpenBSD developers, who recently found and fixed a 33-year-old buffer overflow bug in Yacc. "But if the stack is at maximum size, this will overflow if an entry on the stack is larger than the 16 bytes leeway my malloc allows. In the case of of C++ it is 24 bytes, so a SEGV occurred. Funny thing is that I traced this back to Sixth Edition UNIX, released in 1975."

Time to patch

[Anonymous Coward]

Wouldn't want to let anyone take over your system with yacc. Seriously.

From back when

[Yold]

Unix beards were Unix stubble

Re:Time to patch

[slew]

Wouldn't want to let anyone take over your system with yacc. Seriously.

But ./ is already taken over with yak. Seriously.

bad omen

[spir0]

a 33 year old bug, plus a 25 year old bug (http://it.slashdot.org/article.pl?sid=08/05/11/1339228)....

if we keep going backwards, will the world implode? or will daemons start spewing out of cracks in time and space?

Re:Time to patch

[Anonymous Coward]

Who cares about OpenBSD yacc? BSD is dying and Netcraft confirms it. The world has moved to GNU/Linux and Bison.

Re:bad omen

[je ne sais quoi]

Nah! What this means is that they are fixing bugs faster than they're making new ones. If they weren't, they'd spend all their time chasing the newest ones. :)

Re:Great!

[The Master Control P]

I too was devastated to learn that my poor Linux box can only handle 128KB of command line arguments [in-ulm.de]. How can I possibly finish typing in that uncompressed bitmap...

Re:bad omen

[exley]

a 33 year old bug, plus a 25 year old bug (http://it.slashdot.org/article.pl?sid=08/05/11/1339228)....

if we keep going backwards, will the world implode?

Well since time began only 38.5 years ago we should find out the answer very soon!

Re:bad omen

[Dunbal]

or will daemons start spewing out of cracks in time and space?

      I finally figured out what the UAC were doing on the Mars colony... and it had nothing to do with those artifacts!

      Thank god there's a division of Space Marines there...

Re:bad omen

[Dunbal]

It's just as possible people are wasting time fixing unimportant issues and ignoring more important ones.

      We're talking programmers here, not politicians...

Re:Was it really a bug back then?

[russlar]

If you overflow a buffer then it's a bug, whether it is exploitable or not.

If you can overflow an exabyte-sized memory buffer, you deserve a fucking medal.

Re:Time to patch

[msuarezalvarez]

So you are including bison in your own apps and its `bloatedness' becomes a problem? Maybe you should read the manpage...

Re:bad omen

[cryptoluddite]

Well since bugs before the epoch [wikipedia.org] were actual insects, judging by past precedent they'll get super powers... like wall-climbing ability or maybe spidey senses ??

Re:bad omen

[menace3society]

The next bug will be in Boolean logic. After that, OpenBSD devs will start fixing structural engineering errors the Tower of Pisa.

Re:Great!

[menace3society]

Burn the contents of the tar archive onto a CD. Mount the CD over the original directory structure. Use find(1)'s -fstype option to locate all the files that aren't on the CD, copy them to an empty disk image, then eject the CD. Remount the disk image over the original directory, delete all the files in the directory, then unmount the disk image. The files identical in name to those that were on the disk image (which are those that weren't on the CD) won't be deleted thanks to the peculiarities of mount(2).

You're welcome.

Re:Time to patch

[setagllib]

Ah, but it would be written as a J2EE application. And the input wouldn't be .y, it'd be an XML document. And the output wouldn't be C, it'd be another XML, passing through a terabyte of XSLT. Then you pass this compiled parser XML, only a gigabyte in size, and your language file to a parser web service and it returns even more XML representing the parse tree.

Ahh, progress.

Hilarious!

[BollocksToThis]

Funny thing is that I traced this back to Sixth Edition UNIX, released in 1975

My sides are completely split! Invite this guy to more parties.

Re:Was it really a bug back then?

[AJWM]

/*Where's my medal?*/

You'll get it when the buffer overflows. If you're running it on a system that processes a billion of those loops per second, that should be in a bit over 31 years. Scale accordingly for your processor and memory speed.

Re:bad omen

[Jurily]

Sure. Break malloc even worse to allow for backwards compatibility.

See "Windows 95".

Re:bad omen

[laejoh]

In exactly 3.5 years , but I'm afraid the answer will disappoint you.

Re:Time to patch

[TapeCutter]

Great post, I'm still laughing as I type.

Speaking of old bugs the guy who sits next to me at work hooked a 15yo mainfame bug a few months back. His stock comment whenever someone mentions it is: "Three more years and that one would have been old enough to vote!"

Re:Great!

[MBGMorden]

You forgot "Er.". All Linux advice must contain "Er." at the beginning of the first sentence in order to signify the fact that the poster should have already known how to do this rather than asking this question.

Re:Great!

[maztuhblastah]

So Saturdays at your house must be a real blast, huh?