Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SEGV in dcputs in decompile.c:103 #143

Open
c1208828 opened this issue May 16, 2018 · 2 comments
Open

SEGV in dcputs in decompile.c:103 #143

c1208828 opened this issue May 16, 2018 · 2 comments
Assignees

Comments

@c1208828
Copy link

https://docs.google.com/document/d/1gTd44AjxkCNkoDDh28NwiSeLDa5poBYROEoLEG4JVCA/edit
https://drive.google.com/open?id=1221B4Z577S9YMY_E_C3N9myR2aMGxwKe

Program received signal SIGSEGV, Segmentation fault.
strlen () at ../sysdeps/x86_64/strlen.S:106
106 ../sysdeps/x86_64/strlen.S: No such file or directory.
(gdb) bt
#0 strlen () at ../sysdeps/x86_64/strlen.S:106
#1 0x000000000041cca4 in dcputs (s=0x0) at decompile.c:103
#2 0x00000000004488bf in decompileIF (n=, actions=0x691a60, maxn=) at decompile.c:2368
#3 0x0000000000452755 in decompileActions (indent=4, actions=0x691a60, n=3) at decompile.c:3494
#4 decompileIF (n=5, actions=0x69c4f0, maxn=) at decompile.c:2656
#5 0x0000000000440a65 in decompileActions (indent=, actions=0x69c4f0, n=6) at decompile.c:3494
#6 decompileSETTARGET (n=, actions=, maxn=, is_type2=)
at decompile.c:3169
#7 0x0000000000451d6d in decompileActions (indent=, actions=, n=8) at decompile.c:3494
#8 decompile_SWITCH (n=0, off1end=, maxn=, actions=0x69c360) at decompile.c:2235
#9 decompileIF (n=, actions=, maxn=) at decompile.c:2594
#10 0x0000000000440a65 in decompileActions (indent=, actions=0x691400, n=12) at decompile.c:3494
#11 decompileSETTARGET (n=, actions=, maxn=, is_type2=)
at decompile.c:3169
#12 0x000000000045752d in decompileActions (indent=, actions=0x691360, n=13) at decompile.c:3494
#13 decompile5Action (n=13, actions=0x691360, indent=indent@entry=0) at decompile.c:3517
#14 0x000000000040f34a in outputSWF_DOACTION (pblock=0x691250) at outputscript.c:1551
#15 0x000000000040211e in readMovie (f=0x690010) at main.c:281
#16 main (argc=, argv=) at main.c:354

Breakpoint 1, dcputs (s=0x691930 "tellTarget('getTimer()') {\n") at decompile.c:103
103 int len=strlen(s);
(gdb) l
98 }
99
100 void
101 dcputs(const char *s)
102 {
103 int len=strlen(s);
104 dcchkstr(len);
105 strcat(dcptr,s);
106 dcptr+=len;
107 strsize+=len;

@hlef
Copy link
Contributor

hlef commented Jun 30, 2018

Duplicate of #144. Should be fixed by 6c24ac4.

@hlef
Copy link
Contributor

hlef commented Jun 30, 2018

FTR, this issue was assigned number CVE-2018-11225.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants