Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
out of bounds heap read in rpmstrPoolId / rstrlenhash #135
The attached file will cause an out of bounds memory read in rpm (tested with rpm -i --test [input]).
Found with american fuzzy lop and address sanitizer.
Here's a stack trace from asan:
I'm attaching another file, this creates a use after free, but it's in the same line of code, so I assume it's a variation of the same bug.