URL:
<http://savannah.gnu.org/bugs/?45050>
Summary: Invalid read / heap overflow in unescape_char()
Project: make
Submitted by: hanno
Submitted on: Fri 08 May 2015 12:12:01 AM CEST
Severity: 3 - Normal
Item Group: None
Status: None
Privacy: Public
Assigned to: None
Open/Closed: Open
Discussion Lock: Any
Component Version: None
Operating System: None
Fixed Release: None
Triage Status: None
_______________________________________________________
Details:
Attached file will cause a heap overflow / invalid read error in make. This
can be seen with address sanitizer or valgrind.
I'll attach Address Sanitizer output. This was found with american fuzzy lop.
_______________________________________________________
File Attachments:
-------------------------------------------------------
Date: Fri 08 May 2015 12:12:01 AM CEST Name:
Makefile.heapoverflow-unescape_char Size: 3B By: hanno
<http://savannah.gnu.org/bugs/download.php?file_id=33960>
-------------------------------------------------------
Date: Fri 08 May 2015 12:12:01 AM CEST Name:
Makefile.heapoverflow-unescape_char.asan.txt Size: 3kB By: hanno
<http://savannah.gnu.org/bugs/download.php?file_id=33961>
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?45050>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
_______________________________________________
Bug-make mailing list
[email protected]
https://lists.gnu.org/mailman/listinfo/bug-make
