Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

write access violation with '<button type=radio>' #17

Closed
kcwu opened this issue Aug 17, 2016 · 1 comment
Closed

write access violation with '<button type=radio>' #17

kcwu opened this issue Aug 17, 2016 · 1 comment

Comments

@kcwu
Copy link
Contributor

kcwu commented Aug 17, 2016

$ echo '<button type=radio>' |  ./w3m -T text/html -dump
Program received signal SIGSEGV, Segmentation fault.
0x000000000044f19b in formUpdateBuffer (a=0x7d9000, buf=0x7cee00, form=0x7d8f80) at form.c:444
444                 buf->currentLine->lineBuf[spos] = ' ';
(gdb) p buf->currentLine->lineBuf
$1 = 0x495252 ""
(gdb) p spos
$2 = 0
(gdb) info files
....skip some lines...
       0x0000000000490b40 - 0x00000000004a0612 is .rodata

Writing to rodata section and crash.

This is found by afl-fuzz

tats added a commit that referenced this issue Aug 18, 2016
@tats
Copy link
Owner

tats commented Aug 18, 2016

Fixed, thank you.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants