-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap-buffer-overflow vulnerabilty caused by wrong boundary checking in SIZECHECK #45
Comments
this is CVE-2017-9058 ... |
Is there any fix for this CVE/bug already? |
The proposed patch makes libytnef unable to extract |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
heap-buffer-overflow vulnerabilty:
The cause is an incorrect array boundary checking.
_The proposed patch : _ use
>=
instead of>
the testcase download link:
testcase
The text was updated successfully, but these errors were encountered: