Creating test case using base program. Added a Socket Server to accept communication from untrusted source. Completed injection. UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/tree make install CC="$SS_CC" LD="$SS_LNK" CFLAGS="$CFLAGS" CPPFLAGS="$CPPFLAGS" LDFLAGS="$LDFLAGS" prefix="$SS_TC_ROOT/$SS_TC_INSTALL" LIBS="$LIBS" Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q input/good-01 STDOUT-REPORT-01 AND STDOUT-CONTENT-LENGTH-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 STDOUT-REPORT-02 AND STDOUT-CONTENT-LENGTH-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 4 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 STDOUT-REPORT-03 AND STDOUT-CONTENT-LENGTH-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT {"type":"report","directories":7,"files":367} SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -P "test*" -F input/good-03 STDOUT-REPORT-04 AND STDOUT-CONTENT-LENGTH-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 7 directories, 62 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -H "" input/good-01 STDOUT-REPORT-05 AND STDOUT-CONTENT-LENGTH-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT 5 directories, 10 files SIMILAR DOES_NOT_RETURN CONTROLLED_EXIT Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. READ_APPLICATION_DATA DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -J input/good-03 weakness_started_xbd08mcTnqwZqWAG2Vvx AND ((NOT PERFORMER AND (print_buffer_yVLiUf54Fs OR (segfault_code_pE64tYto80 OR segfault_code_ZRuOm8zWP4 OR segfault_code_7FmuruGPHF OR segfault_code_ujIWbQKdMN OR segfault_code_cI5kvDNVS3 OR segfault_msg_ijZZKom9dm OR illegal_inst_msg_Res2euYQE4)) AND NOT timeout_vZdtK9FasN) or (PERFORMER AND NOT ((print_buffer_yVLiUf54Fs OR (segfault_code_pE64tYto80 OR segfault_code_ZRuOm8zWP4 OR segfault_code_7FmuruGPHF OR segfault_code_ujIWbQKdMN OR segfault_code_cI5kvDNVS3 OR segfault_msg_ijZZKom9dm OR illegal_inst_msg_Res2euYQE4)) OR timeout_vZdtK9FasN OR controlled_exit_E674riS2jU))) (NOT PERFORMER AND (print_buffer_yVLiUf54Fs OR (segfault_code_pE64tYto80 OR segfault_code_ZRuOm8zWP4 OR segfault_code_7FmuruGPHF OR segfault_code_ujIWbQKdMN OR segfault_code_cI5kvDNVS3 OR segfault_msg_ijZZKom9dm OR illegal_inst_msg_Res2euYQE4)) AND NOT timeout_vZdtK9FasN) or (PERFORMER AND NOT ((print_buffer_yVLiUf54Fs OR (segfault_code_pE64tYto80 OR segfault_code_ZRuOm8zWP4 OR segfault_code_7FmuruGPHF OR segfault_code_ujIWbQKdMN OR segfault_code_cI5kvDNVS3 OR segfault_msg_ijZZKom9dm OR illegal_inst_msg_Res2euYQE4)) OR timeout_vZdtK9FasN OR controlled_exit_E674riS2jU)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction logfile.txt [a-zA-Z0-9]{65,} None stonesoup_trace:weakness_start Has a heap buffer of size 64. Reads in an ascii string from an environment variable and copies the final 63 characters into the heap buffer. Then reads the variable back from the heap buffer in reverse order, but incorrectly uses the size of the original string. If the original string is longer than 63characters, this will result in an underread. READ_APPLICATION_DATA DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 0 --charset ASCII --sort=name -n -q -L 2 input/good-02 weakness_started_VVdToHasn6PPxueJ6gYs AND ((NOT PERFORMER AND (print_buffer_B7Jq4z2tVP OR (segfault_code_nWmmMXGngz OR segfault_code_frIMwGcnKG OR segfault_code_c56QMrG6zU OR segfault_code_k67FbN2E1K OR segfault_code_BcgMHS0mjo OR segfault_msg_weNd5tzGXh OR illegal_inst_msg_3Dg9EBCQvi)) AND NOT timeout_WpDD4HkszJ) or (PERFORMER AND NOT ((print_buffer_B7Jq4z2tVP OR (segfault_code_nWmmMXGngz OR segfault_code_frIMwGcnKG OR segfault_code_c56QMrG6zU OR segfault_code_k67FbN2E1K OR segfault_code_BcgMHS0mjo OR segfault_msg_weNd5tzGXh OR illegal_inst_msg_3Dg9EBCQvi)) OR timeout_WpDD4HkszJ OR controlled_exit_E3hScOMEtV))) (NOT PERFORMER AND (print_buffer_B7Jq4z2tVP OR (segfault_code_nWmmMXGngz OR segfault_code_frIMwGcnKG OR segfault_code_c56QMrG6zU OR segfault_code_k67FbN2E1K OR segfault_code_BcgMHS0mjo OR segfault_msg_weNd5tzGXh OR illegal_inst_msg_3Dg9EBCQvi)) AND NOT timeout_WpDD4HkszJ) or (PERFORMER AND NOT ((print_buffer_B7Jq4z2tVP OR (segfault_code_nWmmMXGngz OR segfault_code_frIMwGcnKG OR segfault_code_c56QMrG6zU OR segfault_code_k67FbN2E1K OR segfault_code_BcgMHS0mjo OR segfault_msg_weNd5tzGXh OR illegal_inst_msg_3Dg9EBCQvi)) OR timeout_WpDD4HkszJ OR controlled_exit_E3hScOMEtV)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None Segmentation fault None Illegal instruction logfile.txt [a-zA-Z0-9]{65,} None stonesoup_trace:weakness_start