Kirill Furman

icon company Astra Linux icon location Moscow icon location Application Security Engineer

Results 4 issues of Kirill Furman

ppd-conflicts.c: Fix SEGV in 'cupsResolveConflicts()'

A fuzzer found a way to call `cupsResolveConflicts()` with NULL options structure and not-null num_options. This caused a segmentation fault because non-existent elements of the options structure are accessed in...

SEGV ppd-conflicts.c:210 in cupsResolveConflicts()

### Describe the bug I have found SIGSEGV crashes with cups upstream version (c220e78), using custom harness for fuzzing, made of `testppd.c` and `testcache.c` unit-tests. ### Here is minimized fuzzer-target...

Stack-buffer-overflow in usbmisc.c:56

2 comment

I have found stack-buffer-overflow in upstream version usbutils ([153d41d](https://github.com/gregkh/usbutils/commit/153d41d2d1c05f783918a0a837f4f255c92b8e3a)) in `usbmisc.c` file, using `lsusb` as a argv-based harness for fuzzing. Running lsusb with -D argument and incorrect value, which length...

usbmisc: fix possible stack-buffer-overflow

Running lsusb with -D argument and path, which len is more than PATH_MAX + 1, cause stack-buffer-overflow because of copy to the buf a string without null-terminator Force setting 0...