|
From: | Assaf Gordon |
Subject: | bug#32082: heap buffer overflow in sed/execute.c, line 992 |
Date: | Sun, 8 Jul 2018 20:14:17 -0600 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 |
On 08/07/18 10:36 AM, Jim Meyering wrote:
On Sat, Jul 7, 2018 at 9:28 PM, Assaf Gordon <address@hidden> wrote:On 07/07/18 05:01 AM, address@hidden wrote:I am working on a project in which I use the afl fuzzer to fuzz different open-source software. In doing so, I discovered a heap buffer overflow in sed/execute.c, line 992.Attached is a suggested fix. comments very welcomed,Here are some suggested comment adjustments:
Thanks. Attached updated version. I will push it tomorrow if there are no further comments. regards, - assaf
0001-sed-fix-heap-buffer-overflow-from-invalid-references.patch
Description: Text Data
[Prev in Thread] | Current Thread | [Next in Thread] |