-
Notifications
You must be signed in to change notification settings - Fork 91
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap buffer out-of-bounds write in addMultirowsForm() #26
Comments
kcwu
changed the title
heap buffer overflow write in addMultirowsForm()
heap buffer out-of-bounds write in addMultirowsForm()
Aug 28, 2016
A workaround patch has been applied. Thank you. |
BTW, could you reproduce this issue with assert() ? |
Yes, reproducible.
|
tats
added a commit
that referenced
this issue
Dec 18, 2016
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
input
pr
is corrupted. Note the correct address ofpr
is 0x9c7f60 but its highest byte is overwritten by 0x5b=='['This is because buffer overflows earlier in addMultirowsForm (several times). With following assertion, it can catch the overflow easier.
This is found by afl-fuzz.
The text was updated successfully, but these errors were encountered: