Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ERROR: AddressSanitizer failed to allocate 0xa4063000 (-1543098368) bytes of LargeMmapAllocator: Cannot allocate memory #0 0xb61ec4b2 (/usr/lib/i386-linux-gnu/libasan.so.0+0x124b2) #1 0xb61f50dc (/usr/lib/i386-linux-gnu/libasan.so.0+0x1b0dc) #2 0xb61f8093 (/usr/lib/i386-linux-gnu/libasan.so.0+0x1e093) #3 0xb61e22ed (/usr/lib/i386-linux-gnu/libasan.so.0+0x82ed) #4 0xb61f088b (/usr/lib/i386-linux-gnu/libasan.so.0+0x1688b) #5 0x8063b7c in parse_string_node /home/b/asan/libplist/src/bplist.c:292 #6 0x8063b7c in parse_bin_node /home/b/asan/libplist/src/bplist.c:668 #7 0x8063b7c in parse_bin_node_at_index /home/b/asan/libplist/src/bplist.c:755 #8 0x80632a0 in parse_dict_node /home/b/asan/libplist/src/bplist.c:461 #9 0x80632a0 in parse_bin_node /home/b/asan/libplist/src/bplist.c:697 #10 0x80632a0 in parse_bin_node_at_index /home/b/asan/libplist/src/bplist.c:755 #11 0x8068b30 in plist_from_bin /home/b/asan/libplist/src/bplist.c:844 #12 0x804a175 in main /home/b/asan/libplist/tools/plistutil.c:150 #13 0xb6028a82 (/lib/i386-linux-gnu/libc.so.6+0x19a82) #14 0x804aef5 in _start (/home/b/asan/libplist/tools/plistutil+0x804aef5)
poc: min.txt
The text was updated successfully, but these errors were encountered:
This has been fixed by checking if the range of the string data is inside correct range, commit 32ee521.
Sorry, something went wrong.
sure. seems I run a old version.
Well, I got a similar report via google's OSS-Fuzz which led to a fix before I looked at this ticket :)
This is CVE-2017-6436
No branches or pull requests
poc:
min.txt
The text was updated successfully, but these errors were encountered: