3

We discovered that running our application under certain conditions results in Windows bluescreen. After some investigation we were able to narrow down the scenario to a sample of ~50 lines of C code using Winsock2 APIs. The sample -details removed by MS request-. Windows Server 2008 R2 crashes after several seconds running the sample. The problem reproduces on different physical machines as well as on Virtual Machines.

It looks like something that Microsoft would be willing to fix given that the problem repro is consistent. What is the right way to report such a bug? Any other suggestions?

Bill the Lizard
  • 398,270
  • 210
  • 566
  • 880
glagolig
  • 1,100
  • 1
  • 12
  • 28
  • I just sent a notification to the IPv6 Program Manager for MS Windows – Sander Steffann Feb 27 '12 at 21:51
  • MS need to look at this but so do you. `size` should be `sizeof sockaddr`, not 28; you have two 0xffs, not one; and I'm not clear about '169.13.13.13 (not configured on the local machine)'. If that isn't an IP address of a local interface you shouldn't be binding to it. – user207421 Feb 27 '12 at 23:45
  • bind address is a configurable parameter in our app. If someone mistypes it the system keeps crashing [our app is a service :-) ] bind is supposed to return with error, not to crash. – glagolig Feb 27 '12 at 23:59
  • Two 0xff is all right. The address in the comment is wrong, it should be ::FFFF:169.13.13.13 . – glagolig Feb 28 '12 at 00:07
  • @EJP - it should be sizeof(sockAddr) (his variable name) or sizeof(sockaddr_in6). sizeof(sockaddr) is the size of the generic sockaddr type. – selbie Feb 29 '12 at 06:19
  • Update: I have been contacted by a Microsoft representative. The problem is likely to be resolved in the nearest future. – glagolig Mar 01 '12 at 21:01
  • What were Microsoft's reasons for asking you to remove the code? – user207421 Apr 12 '12 at 01:40
  • EJP: this may be a security bug. – glagolig Apr 25 '12 at 02:16
  • Ah, things like this happens often in open source bug databases like Mozilla's. – Yuhong Bao May 08 '12 at 20:06
  • http://meta.stackexchange.com/questions/131039/how-much-influence-should-an-external-site-entity-have-over-the-questions-on-a-s – Yuhong Bao Jun 16 '12 at 08:28

1 Answers1

2

This was just fixed in http://technet.microsoft.com/en-us/security/bulletin/ms12-032

Yuhong Bao
  • 3,891
  • 1
  • 19
  • 20