http://llvm.org/bugs/show_bug.cgi?id=13713
Bug #: 13713
Summary: Address Sanitizer misses a stack-buffer-overflow
problem in JtR
Product: new-bugs
Version: 3.1
Platform: PC
OS/Version: Linux
Status: NEW
Severity: enhancement
Priority: P
Component: new bugs
AssignedTo: [email protected]
ReportedBy: [email protected]
CC: [email protected]
Classification: Unclassified
Address Sanitizer misses a stack-buffer-overflow problem in JtR
Steps to reproduce
==================
git clone https://github.com/magnumripper/magnum-jumbo.git
cd magnum-jumbo/src
git checkout 27935699296d47a dmg_fmt_plug.c
make linux-x86-64-clang-debug
../run/john -fo:dmg -t # this runs fine but it shouldn't!
✗ clang --version
clang version 3.1 (branches/release_31)
Target: x86_64-unknown-linux-gnu
Thread model: posix
Problematic Code (dmg_fmt_plug.c)
=================================
unsigned char iv[16];
...
HMAC_Final(&hmacsha1_ctx, iv, (unsigned int *) &mdlen); // this write 20 bytes
to iv!
I tried to create standalone test cases for reproducing this problem but
couldn't. Address Sanitizer worked fine for all my test cases.
--
Configure bugmail: http://llvm.org/bugs/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
_______________________________________________
LLVMbugs mailing list
[email protected]
http://lists.cs.uiuc.edu/mailman/listinfo/llvmbugs
