[pcre-dev] [Bug 2056] New: stack-based buffer overflow in r…

Page principale
Ce message fait partie du fil suivant :
MArborescence complète du fil triée par date
M 
admin à ->
Supprimer ce message
Auteur: admin
Date:  
À: pcre-dev
Sujet: [pcre-dev] [Bug 2056] New: stack-based buffer overflow in read_capture_name32 (pcretest.c)
https://bugs.exim.org/show_bug.cgi?id=2056 

            Bug ID: 2056
           Summary: stack-based buffer overflow in read_capture_name32
                    (pcretest.c)
           Product: PCRE
           Version: 8.40
          Hardware: x86-64
                OS: Linux
            Status: NEW
          Severity: bug
          Priority: medium
         Component: Code
          Assignee: ph10@???
          Reporter: ago@???
                CC: pcre-dev@???


Created attachment 997
--> https://bugs.exim.org/attachment.cgi?id=997&action=edit
stacktrace

Hello,

I found a stack overflow write through fuzzing.
It was tested on version 8.40, compiled with clang-3.9.1

Output, included stacktrace in attachment.

Command to reproduce:
# pcretest -32 -d $FILE

Reproducer:
https://github.com/asarubbo/poc/blob/master/00208-pcre-stackoverflow-read_capture_name32

( I know that is preferable attach reproducer here, but this link won't expire
in the future )

--
You are receiving this mail because:
You are on the CC list for the bug.
Ce message a été envoyé sur les listes de diffusion suivantes :
Pcre-dev
Informations sur la liste de diffusion | Messages voisins		<-[pcre-dev] [Bug 2055] stack-based buffer overflow in pcre32_copy_substring (pcre_get.c)[pcre-dev] [Bug 2045] heap-based bufffer overflow in regexflip8_or_16 (pcretest.c)->
Tahini and Hummus and Cumin Development Archives administré par cumin AdminsLurker (version 2.3)