[pcre-dev] [Bug 2045] New: heap-based bufffer overflow in regexflip8_or_16 (pcretest.c)

admin Wed, 22 Feb 2017 01:21:08 -0800

https://bugs.exim.org/show_bug.cgi?id=2045


            Bug ID: 2045
           Summary: heap-based bufffer overflow in regexflip8_or_16
                    (pcretest.c)
           Product: PCRE
           Version: 8.40
          Hardware: x86-64
                OS: Linux
            Status: NEW
          Severity: bug
          Priority: medium
         Component: Code
          Assignee: p...@hermes.cam.ac.uk
          Reporter: a...@gentoo.org
                CC: pcre-dev@exim.org

Created attachment 985
  --> https://bugs.exim.org/attachment.cgi?id=985&action=edit
stacktrace

Hello,

I found an heap overflow through fuzzing.
It was tested on version 8.40, compiled with clang-3.9.1

Output, included stacktrace in attachment.

Command to reproduce:
# pcretest -16 -d $FILE

Reproducer:
https://github.com/asarubbo/poc/blob/master/00196-pcre-heapoverflow-regexflip8_or_16

( I know that is preferable attach reproducer here, but this link won't expire
in the future )

-- 
You are receiving this mail because:
You are on the CC list for the bug.
-- 
## List details at https://lists.exim.org/mailman/listinfo/pcre-dev

[pcre-dev] [Bug 2045] New: heap-based bufffer overflow in regexflip8_or_16 (pcretest.c)

Reply via email to