bug#32082: heap buffer overflow in sed/execute.c, line 992

bug-sed

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#32082: heap buffer overflow in sed/execute.c, line 992

From:	Assaf Gordon
Subject:	bug#32082: heap buffer overflow in sed/execute.c, line 992
Date:	Sun, 8 Jul 2018 20:14:17 -0600
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0

On 08/07/18 10:36 AM, Jim Meyering wrote:

On Sat, Jul 7, 2018 at 9:28 PM, Assaf Gordon <address@hidden> wrote:

On 07/07/18 05:01 AM, address@hidden wrote:


I am working on a project in which I use the afl fuzzer to fuzz
different open-source software. In doing so, I discovered a
heap buffer overflow in sed/execute.c, line 992.


Attached is a suggested fix.

comments very welcomed,


Here are some suggested comment adjustments:


Thanks.

Attached updated version.
I will push it tomorrow if there are no further comments.


regards,
 - assaf

0001-sed-fix-heap-buffer-overflow-from-invalid-references.patch
Description: Text Data

[Prev in Thread]

Current Thread

[Next in Thread]

bug#32082: heap buffer overflow in sed/execute.c, line 992, bugs, 2018/07/07
- bug#32082: heap buffer overflow in sed/execute.c, line 992, Assaf Gordon, 2018/07/08
  - bug#32082: heap buffer overflow in sed/execute.c, line 992, Jim Meyering, 2018/07/08
    - bug#32082: heap buffer overflow in sed/execute.c, line 992, Assaf Gordon <=
    - bug#32082: heap buffer overflow in sed/execute.c, line 992, Assaf Gordon, 2018/07/11
- bug#32082: heap buffer overflow in sed/execute.c, line 992, project-repo, 2018/07/08

Prev by Date: bug#32082: heap buffer overflow in sed/execute.c, line 992
Next by Date: bug#32082: heap buffer overflow in sed/execute.c, line 992
Previous by thread: bug#32082: heap buffer overflow in sed/execute.c, line 992
Next by thread: bug#32082: heap buffer overflow in sed/execute.c, line 992
Index(es):
- Date
- Thread