Skip to content
Branch: master
Find file History
adrianherrera and morehouse Added LIBFUZZER_FLAGS variable to test-libfuzzer scripts (#163)
Allows you to easily test libFuzzer variations
Latest commit f4a0fff Oct 18, 2019
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
README.md Update README.md Oct 13, 2016
build.sh Added $JOBS variable to all make -j commands Feb 26, 2019
target.cc first real commit Oct 7, 2016
test-libfuzzer.sh Added LIBFUZZER_FLAGS variable to test-libfuzzer scripts (#163) Oct 17, 2019

README.md

Finds CVE-2016-5180, 1-byte-write-heap-buffer-overflow in c-ares (https://c-ares.haxx.se/). This bug was one of out a chain of two bugs that made a ChromeOS exploit possible: code execution in guest mode across reboots.

Time to find: < 1 second.

ERROR: AddressSanitizer: heap-buffer-overflow
WRITE of size 1 at 0x6040000d643b thread T0
    #0 0x4ef2b7 in ares_create_query ares_create_query.c:196:3
You can’t perform that action at this time.