New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap overflow #16
Comments
|
Ouch. This is more simply reproduced with:
The problem: "assert" and "LogDebug", "LogTest", and "LogTrace" are mapped out as noops and it should have mapped out the assigne as well. A fix has been put in Release "3.0.17". |
pcmacdon
pushed a commit
that referenced
this issue
May 20, 2020
… or assign result of assert/LogDebug/... FossilOrigin-Name: 9f3a8079d766d1513c2e8e9f5aae19758bafbd336d40f10028088bd61983db3e
|
Release "3.0.18" now makes it an error to redefine or assign result of assert/LogDebug/... |
This was referenced Oct 20, 2020
This was referenced Oct 31, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Enviroment
poc:
vulnerability description
Below is the ASAN output, We can find that the code has a heap overflow in jsi_evalcode_sub src/jsiEval.c:1325

The text was updated successfully, but these errors were encountered: