https://bugs.exim.org/show_bug.cgi?id=2367
Bug ID: 2367
Summary: multiple crashes when compiled with ASAN
Product: PCRE
Version: 10.32 (PCRE2)
Hardware: x86-64
OS: Linux
Status: NEW
Severity: security
Priority: medium
Component: Code
Assignee: ph10@???
Reporter: leftcopy.chx@???
CC: pcre-dev@???
Created attachment 1172
-->
https://bugs.exim.org/attachment.cgi?id=1172&action=edit
POC files and the ASAN reports (ending with *.err.txt)
We found with our argumented AFL multiple crashes against an ASAN compiled
`PCRE2 version 10.33-RC1 2018-09-14', by running `./pcre2test $FILE'
Among these, we believe there are some vulnerabilities since most of them are
inside files such as `pcre2_dfa_match.c', `pcre2_extuni.c', etc. A few others
belong to pcre2test.c.
--
You are receiving this mail because:
You are on the CC list for the bug.