Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Heap-buffer-overflow problem in decompileJUMP function in util/decompile.c of libming v0.4.8 #168
A Heap-buffer-overflow problem was discovered in decompileJUMP function in util/decompile.c of libming v0.4.8. This problem can be reproduced in the latest code base, too. A crafted input can cause segment faults and I have confirmed them with address sanitizer too.
Here is the POC file. Please use the "./swftocxx $POC /dev/null" to reproduce the bug.
The ASAN dumps the stack trace as follows: