-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use After Free in yr_parser_lookup_loop_variable() #575
Comments
Fixed in 890c3f8 |
hillu
pushed a commit
to hillu/yara
that referenced
this issue
Mar 27, 2017
(cherry picked from commit 890c3f8)
CVE-2016-10211 has been assigned for this issue. |
hillu
pushed a commit
to hillu/yara
that referenced
this issue
Apr 9, 2017
(cherry picked from commit 890c3f8)
CaldurG
pushed a commit
to CaldurG/yara
that referenced
this issue
Jul 14, 2017
CaldurG
pushed a commit
to CaldurG/yara
that referenced
this issue
Jul 14, 2017
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Use After Free in yr_parser_lookup_loop_variable()
Tested on latest Git HEAD: 779b9a7
Payload
To reproduce:
yara yara_uaf.yar strings
ASAN output:
The text was updated successfully, but these errors were encountered: