New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Null Pointer Dereference in yy_get_next_buffer() #576
Comments
Fixed in eb491e0 |
Mmmm, if the regexp is /\x/ it detects the end of the buffer and returns:
Are you getting a SEGV with the change in eb491e0 ? |
Yup - with and without ASAN. Here's my config: |
Can you send a stack trace? I'm trying to reproduce the issue to no avail. |
hillu
pushed a commit
to hillu/yara
that referenced
this issue
Mar 27, 2017
(cherry picked from commit eb491e0)
CVE-2016-10210 has been assigned for this issue. |
hillu
pushed a commit
to hillu/yara
that referenced
this issue
Apr 9, 2017
(cherry picked from commit eb491e0)
CaldurG
pushed a commit
to CaldurG/yara
that referenced
this issue
Jul 14, 2017
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Null Pointer Dereference in yy_get_next_buffer()
Tested on latest Git HEAD: 779b9a7
Payload
To reproduce:
yara yara_null_ptr.yar strings
ASAN output:
The text was updated successfully, but these errors were encountered: