<html>
  <head>
    <meta content="text/html; charset=windows-1252"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <div class="moz-cite-prefix">I tweeted Don about it, I hope he sends
      more details soon so we can start patching it.<br>
      <br>
      On 11/08/2014 07:46 PM, David Goulet wrote:<br>
    </div>
    <blockquote cite="mid:20141108184634.GA6760@thessa" type="cite">
      <pre wrap="">On 08 Nov (18:39:57), Gregory Maxwell wrote:
</pre>
      <blockquote type="cite">
        <pre wrap="">People were circulating this pastebin around on IRC, since I don't see
any git traffic for it...

<a class="moz-txt-link-freetext" href="http://pastebin.com/se58hAmt">http://pastebin.com/se58hAmt</a>
</pre>
      </blockquote>
      <pre wrap="">
We have no idea what the bug is actually... :S

Would be really great if people actually report bugs instead of entering
twitter vanity contest... We even put up a security disclosure email
account for more severe things that people can report securely.

See on <a class="moz-txt-link-freetext" href="https://bugs.otr.im">https://bugs.otr.im</a>

Cheers!
David

</pre>
      <blockquote type="cite">
        <pre wrap="">
#
# LibOTR memory corruption in 4 hours
# While waiting for conference calls
# Using latest git pulled from git.otr.im/libotr.git
# <a class="moz-txt-link-abbreviated" href="mailto:donb@securitymouse.com">donb@securitymouse.com</a>
#

donb@x-VirtualBox:~$ !LD
LD_LIBRARY_PATH=lib/src/libotr/libotr/src/.libs ./otr
encoded base64
sending message
version is 2
to the switch!!
Segmentation fault (core dumped)
donb@x-VirtualBox:~$ LD_LIBRARY_PATH=lib/src/libotr/libotr/src/.libs ldd ./otr
        linux-gate.so.1 =>  (0xb77c6000)
        libotr.so.5 => lib/src/libotr/libotr/src/.libs/libotr.so.5 (0xb77a9000)
        libc.so.6 => /lib/i386-linux-gnu/libc.so.6 (0xb75ef000)
        libgcrypt.so.11 => /lib/i386-linux-gnu/libgcrypt.so.11 (0xb7568000)
        /lib/ld-linux.so.2 (0xb77c7000)
        libgpg-error.so.0 => /lib/i386-linux-gnu/libgpg-error.so.0 (0xb7563000)
donb@x-VirtualBox:~$ !gd
gdb -q ./otr core
Reading symbols from /home/donb/otr...(no debugging symbols found)...done.
[New LWP 20510]

warning: Can't read pathname for load map: Input/output error.
Core was generated by `./otr'.
Program terminated with signal 11, Segmentation fault.
#0  0xXXXX in ?? () from /lib/i386-linux-gnu/libgcrypt.so.11
(gdb) i r eax
eax            0x53565755       1398167381
(gdb)

^-- controlled EAX = for the win
_______________________________________________
OTR-dev mailing list
<a class="moz-txt-link-abbreviated" href="mailto:OTR-dev@lists.cypherpunks.ca">OTR-dev@lists.cypherpunks.ca</a>
<a class="moz-txt-link-freetext" href="http://lists.cypherpunks.ca/mailman/listinfo/otr-dev">http://lists.cypherpunks.ca/mailman/listinfo/otr-dev</a>
</pre>
        <br>
        <fieldset class="mimeAttachmentHeader"></fieldset>
        <br>
        <pre wrap="">_______________________________________________
OTR-dev mailing list
<a class="moz-txt-link-abbreviated" href="mailto:OTR-dev@lists.cypherpunks.ca">OTR-dev@lists.cypherpunks.ca</a>
<a class="moz-txt-link-freetext" href="http://lists.cypherpunks.ca/mailman/listinfo/otr-dev">http://lists.cypherpunks.ca/mailman/listinfo/otr-dev</a>
</pre>
      </blockquote>
    </blockquote>
    <br>
    <br>
    <pre class="moz-signature" cols="72">-- 
<a class="moz-txt-link-freetext" href="http://jurrevanbergen.nl/">http://jurrevanbergen.nl/</a>
</pre>
  </body>
</html>