New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Heap buffer overflow in getElfSections() #363
Comments
Works correctly in the latest
|
Please recheck, I think this bug is still there in cfa7d1e and the latest 294ed1b of devel branch. Also, completely fixing this bug will probably fix other invalid pointer dereferencing bug in the same function getElfSections(). Thanks. ASAN says:
|
Fixed on |
Thanks, the bug is fixed. |
markus-oberhumer
pushed a commit
that referenced
this issue
Aug 17, 2022
#363 modified: p_vmlinx.cpp
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What's the problem (or question)?
A heap buffer overflow was discovered in the latest version 3.96, in getElfSections().
What should have happened?
Decompress a crafted/suspicious file.
Do you have an idea for a solution?
Check pointer Shdr const *p.
How can we reproduce the issue?
upx.out -df PoC -o /dev/null
PoC: hbo_getElfSections.tar.gz
ASAN says:
Please tell us details about your environment.
upx --version
): upx 3.96-git-d7ba31cab8ceThe text was updated successfully, but these errors were encountered: