New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG] When converting FUR to VGM with furnace console mode, there were many crashes #325
Comments
|
Also happens when opening these files... hmmm... |
|
I used the Fuzz tool to get hundreds of crashes in 24 hours. Poc.tar. gz are a couple of specific errors I classified. |
|
FYI: This issue got CVE-2022-1211 assigned (source: https://vuldb.com/?id.196371) |
|
I have improved the file loader to ensure we don't go out of bounds. Please test with git master. |
|
Re-opening issue as I found one crash. |
|
that appears to be done as well. |
|
Not really - I feel like I need to harden Furnace a bit more. |
OS: ubuntu 20.04
Furnace version dev73.
Command: ./furnace -console -vgmout out.vgm poc.fur
POC.tar.gz
I use fuzz tests, so I don't analyze these crashes in detail.
I packaged the POC file so you can reproduce the error.
The text was updated successfully, but these errors were encountered: