On 8/31/22 3:34 PM, Ivan Kapranov wrote:
Are you sure?
The patch i have attached fixes a buffer overflow if the xform is a single
character string.
The xform is always a single-character string. xform[1] had better be the
'\0' that terminates it. If it's not, the xform is invalid. Nothing you'
Hi! I was fuzzing bash with AFL++ and found
heap-buffer-overflow in
valid_parameter_transform function.
Description:
ASAN report:
==3430898==ERROR: AddressSanitizer: heap-buffer-overflow on address
0x602018
b1 at pc 0x563102ad26cf bp 0x7f
ase Status: release
Hi! I was fuzzing bash with AFL++ and found heap-buffer-overflow in
valid_parameter_transform function.
Description:
ASAN report:
==3430898==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x602018
b1 at pc 0x563102ad26cf bp 0x7ffc38fef8d0
On 8/30/22 1:02 PM, Иван Капранов wrote:
Repeat-By:
1. Build bash with asan 2. Run with AFL++ crafted input (in attachment)
There's no attachment.
--
``The lyf so short, the craft so long to lerne.'' - Chaucer
``Ars longa, vita brevis'' - Hippocrates
Chet Ramey, UTech
AFL++ and found heap-buffer-overflow in
valid_parameter_transform function.
Description:
ASAN report:
==3430898==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x602018
b1 at pc 0x563102ad26cf bp 0x7ffc38fef8d0 sp 0x7ffc38fef8c8
READ of size 1 at 0x602018b1 thread T0
