Creating test case using base program. Added a Socket Server to accept communication from untrusted source. Completed injection. TRUE UNSPECIFIED UNSPECIFIED $SS_TC_ROOT/$SS_TC_INSTALL/bin/postgres -p 8432 ./configure --prefix="$SS_TC_ROOT/$SS_TC_INSTALL" --with-pgport=8432 --with-libraries="$SS_TC_DEPS/lib" --with-includes="$SS_TC_DEPS/include" --with-openssl --with-libxml --with-libxslt --without-selinux --with-readline --without-tcl --without-perl --without-python --without-gssapi --without-pam --without-krb5 --with-ldap --without-bonjour --with-zlib --disable-thread-safety make CC="$SS_CC" CCLD="$SS_LNK" make install CC="$SS_CC" CCLD="$SS_LNK" initalize a database Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 sudo -E -u postgres $SS_TC_ROOT/$SS_TC_INSTALL/bin/initdb $SS_TC_ROOT/testData/good-01/psqldb (UTF8 OR ASCII) AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-01/good-01-UTF8.out good-01/good-01-ASCII.out DOES_NOT_RETURN CONTROLLED_EXIT perform a select Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-02/psql GOOD-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-02/good-02.out DOES_NOT_RETURN CONTROLLED_EXIT perform an insert Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-03/psql GOOD-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-03/good-03.out DOES_NOT_RETURN CONTROLLED_EXIT perform a create Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-04/psql GOOD-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-04/good-04.out DOES_NOT_RETURN CONTROLLED_EXIT perform a delete Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-05/psql GOOD-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-05/good-05.out DOES_NOT_RETURN CONTROLLED_EXIT perform a drop Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-06/psql GOOD-06 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-06/good-06.out DOES_NOT_RETURN CONTROLLED_EXIT import a .sql file Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-07/psql GOOD-07 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-07/good-07.out DOES_NOT_RETURN CONTROLLED_EXIT perform an alter Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-08/psql GOOD-08 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-08/good-08.out DOES_NOT_RETURN CONTROLLED_EXIT see who's logged in Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-09/psql GOOD-09 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT \s*booktown\s*\|\s*root\s*\|\s*([0-9]{1,3}\.){3}[0-9]{1,3}\s* DOES_NOT_RETURN CONTROLLED_EXIT perform a select using LIKE Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash NONE $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-10/psql GOOD-10 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT good-10/good-10.out DOES_NOT_RETURN CONTROLLED_EXIT Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 sudo -E -u postgres $SS_TC_ROOT/$SS_TC_INSTALL/bin/initdb $SS_TC_ROOT/testData/good-01/psqldb weakness_started_kUNvgVk6D3y5XrpTKQ6T AND ((NOT PERFORMER AND (segfault_code_MsOs6aXfgY OR segfault_code_l6hC7cWPDd OR segfault_code_2JuDFR64WD OR segfault_code_7GnBo20A0S OR segfault_code_CKVPK3tFD6 OR segfault_code_hiBLgKFK92 OR segfault_msg_m7slLAWwWW OR illegal_inst_msg_WPtsFLpl2Y OR segfault_glibc_1hzjEYtjdP) AND NOT timeout_St8AqitpaA) or (PERFORMER AND NOT ((segfault_code_MsOs6aXfgY OR segfault_code_l6hC7cWPDd OR segfault_code_2JuDFR64WD OR segfault_code_7GnBo20A0S OR segfault_code_CKVPK3tFD6 OR segfault_code_hiBLgKFK92 OR segfault_msg_m7slLAWwWW OR illegal_inst_msg_WPtsFLpl2Y OR segfault_glibc_1hzjEYtjdP) OR timeout_St8AqitpaA OR controlled_exit_bTKZWxw0gX))) (NOT PERFORMER AND (segfault_code_MsOs6aXfgY OR segfault_code_l6hC7cWPDd OR segfault_code_2JuDFR64WD OR segfault_code_7GnBo20A0S OR segfault_code_CKVPK3tFD6 OR segfault_code_hiBLgKFK92 OR segfault_msg_m7slLAWwWW OR illegal_inst_msg_WPtsFLpl2Y OR segfault_glibc_1hzjEYtjdP) AND NOT timeout_St8AqitpaA) or (PERFORMER AND NOT ((segfault_code_MsOs6aXfgY OR segfault_code_l6hC7cWPDd OR segfault_code_2JuDFR64WD OR segfault_code_7GnBo20A0S OR segfault_code_CKVPK3tFD6 OR segfault_code_hiBLgKFK92 OR segfault_msg_m7slLAWwWW OR illegal_inst_msg_WPtsFLpl2Y OR segfault_glibc_1hzjEYtjdP) OR timeout_St8AqitpaA OR controlled_exit_bTKZWxw0gX)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None 1 None Segmentation fault None Illegal instruction None glibc detected None stonesoup_trace:weakness_start Has a buffer declared on the stack and populated from input data via strncpy. If input begins with a lower case letter oor a higher ascii value, it will crash DOS_UNCONTROLLED_EXIT $SS_TC_ROOT/logs/execute/lttng $SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so 1 -D $SS_TC_ROOT/testData/good-04/psql weakness_started_ydhtN3jGsjWSCMo7e9Us AND ((NOT PERFORMER AND (segfault_code_8776VCQ75A OR segfault_code_nQxSnIStNI OR segfault_code_PNYqc2WH9j OR segfault_code_Bn7x3InIFL OR segfault_code_Y6SHGIGEaG OR segfault_code_ebYIS4HVkv OR segfault_msg_OwTDvEG42o OR illegal_inst_msg_WDZxZNC2mt OR segfault_glibc_xYg9aF0WgC) AND NOT timeout_5fgJAwCIt2) or (PERFORMER AND NOT ((segfault_code_8776VCQ75A OR segfault_code_nQxSnIStNI OR segfault_code_PNYqc2WH9j OR segfault_code_Bn7x3InIFL OR segfault_code_Y6SHGIGEaG OR segfault_code_ebYIS4HVkv OR segfault_msg_OwTDvEG42o OR illegal_inst_msg_WDZxZNC2mt OR segfault_glibc_xYg9aF0WgC) OR timeout_5fgJAwCIt2 OR controlled_exit_rGrOhAo5EZ))) (NOT PERFORMER AND (segfault_code_8776VCQ75A OR segfault_code_nQxSnIStNI OR segfault_code_PNYqc2WH9j OR segfault_code_Bn7x3InIFL OR segfault_code_Y6SHGIGEaG OR segfault_code_ebYIS4HVkv OR segfault_msg_OwTDvEG42o OR illegal_inst_msg_WDZxZNC2mt OR segfault_glibc_xYg9aF0WgC) AND NOT timeout_5fgJAwCIt2) or (PERFORMER AND NOT ((segfault_code_8776VCQ75A OR segfault_code_nQxSnIStNI OR segfault_code_PNYqc2WH9j OR segfault_code_Bn7x3InIFL OR segfault_code_Y6SHGIGEaG OR segfault_code_ebYIS4HVkv OR segfault_msg_OwTDvEG42o OR illegal_inst_msg_WDZxZNC2mt OR segfault_glibc_xYg9aF0WgC) OR timeout_5fgJAwCIt2 OR controlled_exit_rGrOhAo5EZ)) DOES_NOT_RETURN CONTROLLED_EXIT CONTINUED_EXECUTION None 132 None 134 None 135 None 136 None 139 None 1 None Segmentation fault None Illegal instruction None glibc detected None stonesoup_trace:weakness_start