Switch branches/tags
Nothing to show
Find file History
Fetching latest commit…
Cannot retrieve the latest commit at this time.

README.md

Finds CVE-2016-5180, 1-byte-write-heap-buffer-overflow in c-ares (https://c-ares.haxx.se/). This bug was one of out a chain of two bugs that made a ChromeOS exploit possible: code execution in guest mode across reboots.

Time to find: < 1 second.

ERROR: AddressSanitizer: heap-buffer-overflow
WRITE of size 1 at 0x6040000d643b thread T0
    #0 0x4ef2b7 in ares_create_query ares_create_query.c:196:3