New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Stack Buffer Overflow in mysofa2json #96
Comments
I was testing the file with |
Yes, I downloaded the latest release (be7ac15) and compiled using CC=afl-clang-fast CXX=afl-clang-fast++ on Ubuntu 5.4.0-6ubuntu1~16.04.11 |
Description: Ubuntu 16.04.6 LTS Description: Ubuntu 14.04.5 LTS Both using the default build flags. May you provide a fix? May you have to set in src/hdf/fractalhead.c around line 36 the 10 to a lower value? |
I complied the latest release (be7ac15) with gcc and tried parsing the file, got error 10000 or -1 (for some files). But I get the crash for clang enabled code with ASAN. I am not currently aware of the fix. I didnt change any values in src/hdf/fractalhead.c. |
Yes, I will do. Thank you
|
Thank you for the new file as I did not need to install ASAN. |
Thank you. |
We found Stack Buffer Overflow in mysofa2json binary and mysofa2json is complied with clang enabling ASAN.
Machine Setup
POC : POC.zip
ASAN Output
The text was updated successfully, but these errors were encountered: