[sqlite] Undefined behavior in fopen64 in sqlite3

Yongheng Chen Thu, 02 Jan 2020 12:51:06 -0800

Hi,

We found an undefined behavior in sqlite. Here’s the POC:
—
DELETE FROM zipfile WHERE NULL BETWEEN ( 2) AND 1 ;
—-


When compiled with `-fsanitize=address`, it got a crash. We found that it’s 
because it tries to use `fopen64(NULL, “ab+”)` in zipfileBegin. And fopen64 
with NULL seems an undefined behavior. So we think developers might want to fix 
it in order to avoid undefined behaviors in sqlite to make it more robust.


Yongheng & Rui
_______________________________________________
sqlite-users mailing list
sqlite-users@mailinglists.sqlite.org
http://mailinglists.sqlite.org/cgi-bin/mailman/listinfo/sqlite-users

[sqlite] Undefined behavior in fopen64 in sqlite3

Reply via email to