Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: Follow-up to here-document bug reported on zsh-security

X-seq: zsh-workers 54191
From: Bart Schaefer <schaefer@xxxxxxxxxxxxxxxx>
To: Zsh hackers list <zsh-workers@xxxxxxx>
Cc: Nathan Mills <the.true.nathan.mills@xxxxxxxxx>
Subject: Re: Follow-up to here-document bug reported on zsh-security
Date: Mon, 16 Feb 2026 19:21:20 -0800
Arc-authentication-results: i=1; mx.google.com; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=QOrIOhxa/djgQccS8SmRhwfy538v05NCB3utYZJF2sc=; fh=K2Ar+ocoPmIt3gpIdDjtkp2l9QoUhSgynwizMYyyrbI=; b=a37DknE5ryJtX8vQBnIau/zVhS/QdhZfvl7f+N9SucDGLRs22NUhHvWaLjLrjvUfX5 xcPQKynaU0SR12ZR1IgxeIyXaVCW2NDY5cr5jKHX3YK3TgVMivakAAHXTLH6s3UdIIAW MQpG1KvaIQq78ZkCWUEyS7zKfB4vDTzpazuEEI39NolrDnrxlCyh23KsncDQ0dOrdnoj wSBadel0g1oSEsNxfdVUpGR44z/4k5bo4c74VwZt1ACiMsl1A9bDcvK7FtS6HYfxmbak /NEXpOU9j6Y5Mx5gzkukLHvQD6lTojTztlt1oAcEYFcqOnolH0yepd/Ydc+mDEZMNRB5 UJ5w==; darn=zsh.org
Arc-seal: i=1; a=rsa-sha256; t=1771298491; cv=none; d=google.com; s=arc-20240605; b=ez8cFMoHMlS8m3/v/McbstGJU2BhsX1Xg5spmvnvuND5Vh1gETUSFVXwKBkOX1dGWN JzfMTwx0buTB9xH4P7QWQ1cJG5jWY8BggZPcuI6dm4C1uhcS31umHRRMLKVgPUo5AuBK q27bh/4H73C/I8lhWRtd3hN17rpfwgcUtwCMMkXRaO3EZGyycYPVB41DRBlgtb8fc4+8 i8jNPnGxVNRbb3Ks6rZ1ZKCCGB9BjCI0FnPvyO4JKJHdBxIJAFSDOK+lSfn1K20Ld6NQ +4MbMLBZNZdIZERKmKNNWFaocoQPUVAAs0NozBGjNwatSdZ0+rh90I2iNz8ba4u98lK8 K5lA==
Archived-at: <https://zsh.org/workers/54191>
In-reply-to: <28074-1764202336.293999@0YZV.qwQd.pjqI>
List-id: <zsh-workers.zsh.org>
References: <CAH+w=7ZOhHBOWspHwFQ6-6hjHyf2d_7qnPUV-Q3XamP3=WibSw@mail.gmail.com> <28074-1764202336.293999@0YZV.qwQd.pjqI>

Apologies that this sat for so long.

On Wed, Nov 26, 2025 at 4:12 PM Oliver Kiddle <opk@xxxxxxx> wrote:
>
> Bart: did you perhaps miss the second issue that was reported in
> the same mail - the use after free in scanendscope() that probably
> arrived in 53568 / abd541e18c.

I think you mean this?

I wrote (on zsh-security):
> > ** Fix for following AddressSanitizer error **
>
> Thanks for this but the parameter handling in scanendscope() is
> undergoing some significant rewrites that remove most of the code
> around your changes.  It will be helpful if you can check again after
> the next test release.

I don't think there's been a next test release yet, but Nathan if you
can check out the latest from git and test that, it would be helpful.

Messages sorted by: Reverse Date, Date, Thread, Author