hopefully now catches all fallse positives and corner cases for redir_stack bug

author Hanno <hanno@gentoo.org>

Wed, 1 Oct 2014 17:12:50 +0000 (19:12 +0200)

committer Hanno <hanno@gentoo.org>

Wed, 1 Oct 2014 17:12:50 +0000 (19:12 +0200)
author Hanno <hanno@gentoo.org>
Wed, 1 Oct 2014 17:12:50 +0000 (19:12 +0200)
committer Hanno <hanno@gentoo.org>
Wed, 1 Oct 2014 17:12:50 +0000 (19:12 +0200)
diff --git a/bashcheck b/bashcheck

index a0dca70..b4b1626 100755 (executable)
--- a/bashcheck
+++ b/bashcheck
@@ -22,13 +22,16 @@ else
         echo -e "\033[92mNot vulnerable to CVE-2014-7169 (taviso bug)\033[39m"
  fi
  
-$bash -c "true $(printf '<<EOF %.0s' {1..16})" 2>/dev/null
-if [ $? != 0 ]; then
+out=$($bash -c "true $(printf '<<EOF %.0s' {1..80})" 2>1)
+ret=$?
+echo "$out"|grep -q AddressSanitizer
+if [ $? == 0 ] || [ $ret == 139 ]; then
         echo -e "\033[91mVulnerable to CVE-2014-7186 (redir_stack bug)\033[39m"
  else
         echo -e "\033[92mNot vulnerable to CVE-2014-7186 (redir_stack bug)\033[39m"
  fi
  
+
  $bash -c "`for i in {1..200}; do echo -n "for x$i in; do :;"; done; for i in {1..200}; do echo -n "done;";done`" 2>/dev/null
  if [ $? != 0 ]; then
         echo -e "\033[91mVulnerable to CVE-2014-7187 (nested loops off by one)\033[39m"
author	Hanno <hanno@gentoo.org>
	Wed, 1 Oct 2014 17:12:50 +0000 (19:12 +0200)
committer	Hanno <hanno@gentoo.org>
	Wed, 1 Oct 2014 17:12:50 +0000 (19:12 +0200)