FS#29111 - [openssh 5.9p1-8] Segmentation fault libcrypto.so.1.0.0

Attached to Project: Arch Linux
Opened by Giuseppe Leone (joebew42) - Sunday, 25 March 2012, 13:53 GMT
Last edited by Gaetan Bisson (vesath) - Tuesday, 27 March 2012, 12:24 GMT
Task Type Bug Report
Category Packages: Core
Status Closed
Assigned To Gaetan Bisson (vesath)
Architecture i686
Severity High
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Preface:

My system is fully upgraded to latest version.

Description:

ssh causes a segmentation fault when tries to connect to a Dropbear SSH Server 0.51 (http://matt.ucc.asn.au/dropbear/dropbear.html)

gdb output:

Program received signal SIGSEGV, Segmentation fault.
0xb7e4ca4d in _vpaes_decrypt_core () from /usr/lib/libcrypto.so.1.0.0

strace complete output:

as attachment.

Steps to reproduce:

ssh user@remotehost

where: remotehost is a dropbear ssh server (ver. 0.51)
   ssh_strace.txt (29.1 KiB)
This task depends upon

Closed by  Gaetan Bisson (vesath)
Tuesday, 27 March 2012, 12:24 GMT
Reason for closing:  Upstream
Comment by Pierre Schmitz (Pierre) - Sunday, 25 March 2012, 15:07 GMT
If you can easily reproduce this issue you should report it upstream; most likely to openssl. But could also be openssh.
Comment by Gaetan Bisson (vesath) - Sunday, 25 March 2012, 15:09 GMT
If rebuilding OpenSSH against an older openssl makes your issue go away, this is probably: https://bugs.archlinux.org/task/29049

Unfortunately there's not much we can do here: it's an upstream issue, but feel free to let me know if you find a fix.
Comment by Georgi Stanojevski (glisha) - Tuesday, 27 March 2012, 12:00 GMT
Compiling OpenSSH 5.9p1-8 with the older openssl 1.0.0.h-1 makes the issue go away.
Comment by Gaetan Bisson (vesath) - Tuesday, 27 March 2012, 12:24 GMT
Please report this to upstream openssl; see the bottom of: http://rt.openssl.org/NoAuth/Buglist.html

Loading...