-
Notifications
You must be signed in to change notification settings - Fork 540
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap-buffer-overflow (READ of size 1) in Perl_my_atof2() #16002
Comments
From @geeknikTriggered with v5.27.0-97-gd555ed0, compiled with afl-clang-fast on Debian ==11137==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60300000e87a is located 0 bytes to the right of 26-byte region SUMMARY: AddressSanitizer: heap-buffer-overflow /root/perl/numeric.c:1490 |
From @tonycozOn Wed, 07 Jun 2017 00:59:50 -0700, brian.carpenter@gmail.com wrote:
This tries to read from a file, using the script as its own input worked for me. This is caused by this code: else if (!seen_dp && GROK_NUMERIC_RADIX(&s, send)) { GROK_NUMERIC_RADIX() increments s past the decimal point, which is at the end of string in this case, so the following ++s steps past the NUL. I have a fix testing now. Tony |
The RT System itself - Status changed from 'new' to 'open' |
From @tonycozOn Mon, 12 Jun 2017 23:30:52 -0700, tonyc wrote:
Fixed in 9604fbf. Tony |
@tonycoz - Status changed from 'open' to 'pending release' |
From @khwilliamsonThank you for filing this report. You have helped make Perl better. With the release yesterday of Perl 5.28.0, this and 185 other issues have been Perl 5.28.0 may be downloaded via: If you find that the problem persists, feel free to reopen this ticket. |
@khwilliamson - Status changed from 'pending release' to 'resolved' |
Migrated from rt.perl.org#131526 (status was 'resolved')
Searchable as RT131526$
The text was updated successfully, but these errors were encountered: