Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

heap-buffer-overflow in func SkipString #2

Open
NotmebutWind opened this issue Jan 3, 2023 · 1 comment
Open

heap-buffer-overflow in func SkipString #2

NotmebutWind opened this issue Jan 3, 2023 · 1 comment

Comments

@NotmebutWind
Copy link

input value : "@<=>?@ABCDEFGHIJiLM$^^&(^(
you can use ASAN compile the lib and the API JsonValue* value = AJson->Parse(jsonString); it supply and input this value to the API .
it can trige in a buffer-overflow bug.

==2238917==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60200000323c at pc 0x564852e329cc bp 0x7fff7edbed90 sp 0x7fff7edbed80
READ of size 1 at 0x60200000323c thread T0
#0 0x564852e329cb in SkipString /opt1/software/MojoJson/Json.c:695
#1 0x564852e32b03 in ParseString /opt1/software/MojoJson/Json.c:719
#2 0x564852e33b76 in ParseValue /opt1/software/MojoJson/Json.c:858
#3 0x564852e34143 in Parse /opt1/software/MojoJson/Json.c:949
#4 0x564852e342ef in easyloop /opt1/software/MojoJson/test.c:8
#5 0x564852e44355 in main /opt1/software/betafuzz/srap/wrapentry.c:98
#6 0x7f587147ad8f in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58
#7 0x7f587147ae3f
@NotmebutWind NotmebutWind mentioned this issue Jan 3, 2023
Open
@scottcgi
Copy link
Owner

scottcgi commented Jan 4, 2023

I think the problem is that the string is not a valid json format — "@<=>?@ABCDEFGHIJiLM$^^&(^(.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@scottcgi @NotmebutWind