Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix potential buffer overflow in ec_glob #87

Merged
merged 1 commit into from
Jan 19, 2023
Merged

Fix potential buffer overflow in ec_glob #87

merged 1 commit into from
Jan 19, 2023

Conversation

xuhdev
Copy link
Member

@xuhdev xuhdev commented Jan 19, 2023

@xuhdev xuhdev self-assigned this Jan 19, 2023
@xuhdev xuhdev merged commit 41281ea into master Jan 19, 2023
@xuhdev xuhdev deleted the ec-glob branch January 19, 2023 08:21
skeeto added a commit to skeeto/editorconfig-core-c that referenced this pull request Feb 17, 2024
@skeeto
Fix a few more stack buffer overflows
ccf4456 
Several overflows may occur in switch case '[' when the input pattern
contains many escaped characters. The added backslashes leave too little
space in the output pattern when processing nested brackets such that
the remaining input length exceeds the output capacity. Therefore all
these concatenations must also be checked.

The ADD_CHAR was missed in 41281ea (editorconfig#87). The switch can exit exactly at
capacity, leaving no room for the finishing '$', causing an overflow.

These overflows were discovered through fuzz testing with afl.
@skeeto skeeto mentioned this pull request Feb 17, 2024
Merged
skeeto added a commit to skeeto/editorconfig-core-c that referenced this pull request Feb 18, 2024
@skeeto
Fix a few more stack buffer overflows
a8dd531 
Several overflows may occur in switch case '[' when the input pattern
contains many escaped characters. The added backslashes leave too little
space in the output pattern when processing nested brackets such that
the remaining input length exceeds the output capacity. Therefore all
these concatenations must also be checked.

The ADD_CHAR was missed in 41281ea (editorconfig#87). The switch can exit exactly at
capacity, leaving no room for the finishing '$', causing an overflow.

These overflows were discovered through fuzz testing with afl.
xuhdev pushed a commit that referenced this pull request Feb 19, 2024
@skeeto @xuhdev
Fix a few more stack buffer overflows
fca7cf1 
Several overflows may occur in switch case '[' when the input pattern
contains many escaped characters. The added backslashes leave too little
space in the output pattern when processing nested brackets such that
the remaining input length exceeds the output capacity. Therefore all
these concatenations must also be checked.

The ADD_CHAR was missed in 41281ea (#87). The switch can exit exactly at
capacity, leaving no room for the finishing '$', causing an overflow.

These overflows were discovered through fuzz testing with afl.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@xuhdev xuhdev

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@xuhdev @litios