From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED.blaine.gmane.org!not-for-mail From: Ahmet BASTUG Newsgroups: gmane.emacs.bugs Subject: bug#36154: 26.2; read-passwd function creates a security issue Date: Sun, 9 Jun 2019 23:01:52 +0300 Message-ID: <384906f0-1cfb-f813-3d2d-093ef65a1e69@itu.edu.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable Injection-Info: blaine.gmane.org; posting-host="blaine.gmane.org:195.159.176.226"; logging-data="158203"; mail-complaints-to="usenet@blaine.gmane.org" User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.0 To: 36154@debbugs.gnu.org Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Sun Jun 09 22:56:25 2019 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([209.51.188.17]) by blaine.gmane.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from ) id 1ha4rX-000f0F-Vf for geb-bug-gnu-emacs@m.gmane.org; Sun, 09 Jun 2019 22:56:24 +0200 Original-Received: from localhost ([::1]:38362 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.86_2) (envelope-from ) id 1ha4rW-00084K-G6 for geb-bug-gnu-emacs@m.gmane.org; Sun, 09 Jun 2019 16:56:22 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:50317) by lists.gnu.org with esmtp (Exim 4.86_2) (envelope-from ) id 1ha4rF-000842-Or for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:56:07 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ha4rD-00078W-O3 for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:56:05 -0400 Original-Received: from debbugs.gnu.org ([209.51.188.43]:41933) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1ha4rC-000771-0q for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:56:03 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1ha4rB-0003TW-UV for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:56:01 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Ahmet BASTUG Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Sun, 09 Jun 2019 20:56:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 36154 X-GNU-PR-Package: emacs X-Debbugs-Original-To: bug-gnu-emacs@gnu.org Original-Received: via spool by submit@debbugs.gnu.org id=B.156011375513343 (code B ref -1); Sun, 09 Jun 2019 20:56:01 +0000 Original-Received: (at submit) by debbugs.gnu.org; 9 Jun 2019 20:55:55 +0000 Original-Received: from localhost ([127.0.0.1]:55477 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1ha4r4-0003T8-2y for submit@debbugs.gnu.org; Sun, 09 Jun 2019 16:55:55 -0400 Original-Received: from lists.gnu.org ([209.51.188.17]:37162) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1ha418-0001xX-Fb for submit@debbugs.gnu.org; Sun, 09 Jun 2019 16:02:16 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:39117) by lists.gnu.org with esmtp (Exim 4.86_2) (envelope-from ) id 1ha415-0005Cn-VJ for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:02:14 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ha412-00040n-7N for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:02:11 -0400 Original-Received: from duman2.cc.itu.edu.tr ([160.75.25.119]:57962) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1ha410-0003uE-V6 for bug-gnu-emacs@gnu.org; Sun, 09 Jun 2019 16:02:07 -0400 Original-Received: from itu.edu.tr (authenticated aid=ITUec8aa06da52a8f1ebd017cfae50385f2 bits=0) by duman2.cc.itu.edu.tr with ESMTP id x59K1lsY026050 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for ; Sun, 9 Jun 2019 23:01:48 +0300 DKIM-Filter: OpenDKIM Filter v2.11.0 duman2.cc.itu.edu.tr x59K1lsY026050 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=itu.edu.tr; s=itu; t=1560110509; bh=mXv7k2y+7L97F7xO8sYzjzJXyiw1iQj6GpzOTvgvKUc=; h=To:From:Subject:Date:From; b=EAf1gc9yqWFRFjtXwYTt7ON23CYBa6yDyKsM+rr7eG4cUY4rwROmExdv6NiQWCp5V o/BeKWgh4nMNP1vMBsOvx0brcA/Ksu1E0F5DCvtBYngLCKQ0jM2jDa7CK619f/dNxc avt5hNJOEzYHiYv11eBGFpB9jL8/VowdHjM7U9ko= Content-Language: en-US X-Virus-Scanned: clamav-milter 0.101.2 at duman2.cc.itu.edu.tr X-Virus-Status: Clean X-MIME-Autoconverted: from 8bit to quoted-printable by duman2.cc.itu.edu.tr id x59K1lsY026050 X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Mailman-Approved-At: Sun, 09 Jun 2019 16:55:52 -0400 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 209.51.188.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.org gmane.emacs.bugs:160297 Archived-At: read-passwd function which is located in "subr.el" causes kind of a=20 security issue. When function is used, user is prompted with a promt and=20 everything user typed is displayed as '.' characters. If any kind of=20 kill operation is performed on the prompt minibuffer, real value is=20 saved into kill-ring. Then you can yank it anywhere you want. I'm not=20 sure this is meant this way but I think not. --text follows this line-- In GNU Emacs 26.2 (build 1, x86_64-pc-linux-gnu, GTK+ Version 3.24.8) =C2=A0of 2019-04-12 built on juergen Windowing system distributor 'The X.Org Foundation', version 11.0.1200400= 0 System Description:=C2=A0=C2=A0=C2=A0 Manjaro Linux Recent messages: Type C-c C-c to finish, or C-c C-k to cancel When done with a buffer, type C-c C-c Saving file /home/kosantosbik/projects/bot/.git/COMMIT_EDITMSG... Wrote /home/kosantosbik/projects/bot/.git/COMMIT_EDITMSG Git finished Running git push -v origin master:refs/heads/master Git finished C-x C-g is undefined "" Mark set Configured using: =C2=A0'configure --prefix=3D/usr --sysconfdir=3D/etc --libexecdir=3D/usr= /lib --localstatedir=3D/var --with-x-toolkit=3Dgtk3 --with-xft --with-modules 'CFLAGS=3D-march=3Dx86-64 -mtune=3Dgeneric -O2 -pipe -fstack-protector-st= rong -fno-plt' CPPFLAGS=3D-D_FORTIFY_SOURCE=3D2 LDFLAGS=3D-Wl,-O1,--sort-common,--as-needed,-z,relro,-z,now' Configured features: XPM JPEG TIFF GIF PNG RSVG IMAGEMAGICK SOUND GPM DBUS GSETTINGS GLIB NOTIFY ACL GNUTLS LIBXML2 FREETYPE M17N_FLT LIBOTF XFT ZLIB TOOLKIT_SCROLL_BARS GTK3 X11 XDBE XIM MODULES THREADS LIBSYSTEMD LCMS2 Important settings: =C2=A0 value of $LC_MONETARY: tr_TR.UTF-8 =C2=A0 value of $LC_NUMERIC: tr_TR.UTF-8 =C2=A0 value of $LC_TIME: tr_TR.UTF-8 =C2=A0 value of $LANG: en_US.UTF-8 =C2=A0 locale-coding-system: utf-8-unix Major mode: Lisp Interaction Minor modes in effect: =C2=A0 global-magit-file-mode: t =C2=A0 magit-auto-revert-mode: t =C2=A0 global-git-commit-mode: t =C2=A0 async-bytecomp-package-mode: t =C2=A0 shell-dirtrack-mode: t =C2=A0 global-atomic-chrome-edit-mode: t =C2=A0 server-mode: t =C2=A0 save-place-mode: t =C2=A0 savehist-mode: t =C2=A0 doom-modeline-mode: t =C2=A0 global-auto-revert-mode: t =C2=A0 ace-pinyin-global-mode: t =C2=A0 ace-pinyin-mode: t =C2=A0 global-aggressive-indent-mode: t =C2=A0 aggressive-indent-mode: t =C2=A0 global-anzu-mode: t =C2=A0 anzu-mode: t =C2=A0 drag-stuff-global-mode: t =C2=A0 drag-stuff-mode: t =C2=A0 global-hungry-delete-mode: t =C2=A0 hungry-delete-mode: t =C2=A0 global-undo-tree-mode: t =C2=A0 undo-tree-mode: t =C2=A0 fancy-narrow-mode: t =C2=A0 counsel-projectile-mode: t =C2=A0 counsel-mode: t =C2=A0 diredfl-global-mode: t =C2=A0 ivy-rich-mode: t =C2=A0 ivy-mode: t =C2=A0 delete-selection-mode: t =C2=A0 company-box-mode: t =C2=A0 global-company-mode: t =C2=A0 company-mode: t =C2=A0 yas-global-mode: t =C2=A0 yas-minor-mode: t =C2=A0 global-hl-line-mode: t =C2=A0 show-paren-mode: t =C2=A0 global-hl-todo-mode: t =C2=A0 hl-todo-mode: t =C2=A0 diff-hl-flydiff-mode: t =C2=A0 global-diff-hl-mode: t =C2=A0 diff-auto-refine-mode: t =C2=A0 volatile-highlights-mode: t =C2=A0 persp-mode-projectile-bridge-mode: t =C2=A0 persp-mode: t =C2=A0 winner-mode: t =C2=A0 ace-window-display-mode: t =C2=A0 shackle-mode: t =C2=A0 which-key-mode: t =C2=A0 flycheck-posframe-mode: t =C2=A0 display-line-numbers-mode: t =C2=A0 goto-address-prog-mode: t =C2=A0 subword-mode: t =C2=A0 origami-mode: t =C2=A0 symbol-overlay-mode: t =C2=A0 highlight-indent-guides-mode: t =C2=A0 rainbow-mode: t =C2=A0 rainbow-delimiters-mode: t =C2=A0 whitespace-mode: t =C2=A0 electric-pair-mode: t =C2=A0 persistent-scratch-autosave-mode: t =C2=A0 global-flycheck-mode: t =C2=A0 flycheck-mode: t =C2=A0 projectile-rails-global-mode: t =C2=A0 projectile-mode: t =C2=A0 dap-ui-mode: t =C2=A0 dap-mode: t =C2=A0 dumb-jump-mode: t =C2=A0 editorconfig-mode: t =C2=A0 recentf-mode: t =C2=A0 override-global-mode: t =C2=A0 tooltip-mode: t =C2=A0 global-eldoc-mode: t =C2=A0 eldoc-mode: t =C2=A0 electric-indent-mode: t =C2=A0 mouse-wheel-mode: t =C2=A0 prettify-symbols-mode: t =C2=A0 file-name-shadow-mode: t =C2=A0 global-font-lock-mode: t =C2=A0 font-lock-mode: t =C2=A0 blink-cursor-mode: t =C2=A0 auto-composition-mode: t =C2=A0 auto-encryption-mode: t =C2=A0 auto-compression-mode: t =C2=A0 size-indication-mode: t =C2=A0 column-number-mode: t =C2=A0 line-number-mode: t =C2=A0 transient-mark-mode: t Load-path shadows: None found. Features: (shadow sort vc-mtn vc-hg vc-bzr vc-src vc-sccs vc-svn vc-cvs vc-rcs mail-extr emacsbug sendmail pager rng-xsd xsd-regexp rng-cmpct nxml-mode-expansions rng-nxml rng-valid rng-loc rng-uri rng-parse nxml-parse rng-match rng-dt rng-util rng-pttrn nxml-ns nxml-mode nxml-outln nxml-rap html-mode-expansions sgml-mode dom nxml-util nxml-enc xmltok magit-extras forge-list forge-commands forge-semi forge-bitbucket buck forge-gogs gogs forge-gitea gtea forge-gitlab glab forge-github ghub-graphql treepy graphql ghub forge-notify forge-revnote forge-pullreq forge-issue forge-topic bug-reference forge-post forge-repo forge forge-core forge-db closql emacsql-sqlite emacsql emacsql-compiler url-http url-auth url-gw url url-proxy url-privacy url-expand url-methods url-history mailcap magit-bookmark magit-submodule magit-obsolete magit-popup magit-blame magit-stash magit-reflog magit-bisect magit-push magit-pull magit-fetch magit-clone magit-remote magit-commit magit-sequence magit-notes magit-worktree magit-tag magit-merge magit-branch magit-reset magit-files magit-refs magit-status magit magit-repos magit-apply magit-wip magit-log which-func magit-diff smerge-mode magit-core magit-autorevert magit-margin magit-transient magit-process magit-mode transient git-commit magit-git magit-section magit-utils crm log-edit message rfc822 mml mml-sec epa derived epg gnus-util rmail rmail-loaddefs mm-decode mm-bodies mm-encode mail-parse rfc2231 rfc2047 rfc2045 mm-util ietf-drums mail-prsvr mailabbrev mail-utils gmm-utils mailheader pcvs-util add-log with-editor async-bytecomp amx mwim pulse vc-git dap-python yapfify view python-el-fgallina-expansions python tramp-sh company-shell docker-tramp tramp-cache tramp tramp-compat tramp-loaddefs trampver ucs-normalize bash-completion shell pcomplete parse-time format-spec async face-remap disp-table atomic-chrome websocket url-cookie url-domsuf let-alist server saveplace savehist doom-modeline doom-modeline-segments doom-modeline-env doom-modeline-core shrink-path autorevert ace-link ace-pinyin pinyinlib aggressive-indent anzu drag-stuff smart-region easy-kill-mc easy-kill multiple-cursors mc-hide-unmatched-lines-mode mc-separate-operations rectangular-region-mode mc-mark-pop mc-mark-more mc-cycle-cursors mc-edit-lines multiple-cursors-core rect expand-region subword-mode-expansions text-mode-expansions ruby-mode-expansions er-basic-expansions expand-region-core expand-region-custom hungry-delete undo-tree fancy-narrow counsel-projectile counsel xdg dired-x diredfl dired dired-loaddefs swiper ivy-rich ivy flx delsel colir ivy-overlay ffap company-box company-box-doc company-box-icons company-oddmuse company-keywords company-etags company-gtags company-dabbrev-code company-dabbrev company-files company-capf company-cmake company-xcode company-clang company-semantic company-eclim company-template company-bbdb company yasnippet-snippets yasnippet time linum all-the-icons all-the-icons-faces data-material data-weathericons data-octicons data-fileicons data-faicons data-alltheicons memoize hl-line paren hl-todo diff-hl-flydiff diff diff-hl vc-dir vc vc-dispatcher diff-mode volatile-highlights persp-mode-projectile-bridge persp-mode windmove winner ace-window avy shackle trace which-key solaire-mode flycheck-posframe posframe display-line-numbers goto-addr flyspell ispell cap-words superword subword origami origami-parsers symbol-overlay highlight-indent-guides rainbow-mode xterm-color rainbow-delimiters whitespace lsp-clients lsp-clojure lsp-go lsp-xml lsp-css lsp-intelephense lsp-vetur lsp-html lsp-solargraph lsp-rust lsp-pyls elec-pair persistent-scratch flycheck find-func projectile-rails rake inflections inf-ruby ruby-mode smie cl projectile grep ibuf-ext ibuffer ibuffer-loaddefs dap-ui gdb-mi bindat gud bui bui-list bui-info bui-entry bui-core bui-history bui-button bui-utils cus-edit cus-start cus-load tree-mode dap-mode dap-overlays lsp lsp-mode ewoc markdown-mode color noutline outline url-util subr-x spinner network-stream puny nsm rmc starttls tls gnutls json map inline imenu ht filenotify em-glob esh-util dash-functional flymake-proc flymake compile comint ansi-color warnings thingatpt dumb-jump popup f dash s etags xref project editorconfig init-prog init-web init-elixir init-ruby init-python init-go init-c init-emacs-lisp init-dap init-lsp init-projectile init-flycheck init-vcs init-utils init-elfeed init-org init-markdown init-shell init-eshell init-treemacs init-window init-persp init-kill-ring init-ibuffer ibuf-macs init-highlight init-dired init-dashboard diminish dashboard dashboard-widgets recentf tree-widget wid-edit page-break-lines cal-china-x cal-china lunar solar cal-dst holidays hol-loaddefs cal-menu calendar cal-loaddefs bookmark pp init-calendar init-yasnippet init-company init-ivy init-edit hydra ring lv init-ui doom-themes-treemacs doom-themes-org doom-one-theme doom-themes doom-themes-common init-funcs init-basic exec-path-from-shell init-package cl-extra help-mode use-package use-package-ensure use-package-delight use-package-diminish use-package-bind-key bind-key easy-mmode use-package-core finder-inf edmacro kmacro rx info advice package easymenu epg-config url-handlers url-parse auth-source cl-seq eieio eieio-core cl-macs eieio-loaddefs password-cache url-vars seq byte-opt bytecomp byte-compile cconv cl-loaddefs cl-lib pcase init-custom init-const gv time-date mule-util tooltip eldoc electric uniquify ediff-hook vc-hooks lisp-float-type mwheel term/x-win x-win term/common-win x-dnd tool-bar dnd fontset image regexp-opt fringe tabulated-list replace newcomment text-mode elisp-mode lisp-mode prog-mode register page menu-bar rfn-eshadow isearch timer select scroll-bar mouse jit-lock font-lock syntax facemenu font-core term/tty-colors frame cl-generic cham georgian utf-8-lang misc-lang vietnamese tibetan thai tai-viet lao korean japanese eucjp-ms cp51932 hebrew greek romanian slovak czech european ethiopic indian cyrillic chinese composite charscript charprop case-table epa-hook jka-cmpr-hook help simple abbrev obarray minibuffer cl-preloaded nadvice loaddefs button faces cus-face macroexp files text-properties overlay sha1 md5 base64 format env code-pages mule custom widget hashtable-print-readable backquote threads dbusbind inotify lcms2 dynamic-setting system-font-setting font-render-setting move-toolbar gtk x-toolkit x multi-tty make-network-process emacs) Memory information: ((conses 16 997073 100529) =C2=A0(symbols 48 61911 1) =C2=A0(miscs 40 2523 1603) =C2=A0(strings 32 204635 32422) =C2=A0(string-bytes 1 5901869) =C2=A0(vectors 16 114421) =C2=A0(vector-slots 8 2156740 42766) =C2=A0(floats 8 2076 1129) =C2=A0(intervals 56 17136 3688) =C2=A0(buffers 992 47))