Package: re2c Version: 0.13.5 When re2c reads a file that is containing '&' (ampersand) that is followed by null byte, re2c is crashed due to heap overread.
The following is the reproducible steps: $ echo -ne "&\x00" > A $ re2c A Segmentation fault (gdb) r Starting program: /usr/bin/re2c A Program received signal SIGSEGV, Segmentation fault. 0x0806b728 in ?? () (gdb) x/i $pc => 0x806b728: movzbl (%edx),%eax (gdb) i r edx edx 0x809b001 134852609 I am using Debian Jessie, Linux debian 3.16.0-4-686-pae (32bit). -- Choongwoo Han M.S. candidate School of Computing Korea Advanced Institute of Science and Technology (KAIST) Email. cwhan.tunz@ <[email protected]>kaist.ac.kr
