Alena Skliarova

icon indicating a website link https://askliarova.com icon indicating an email [email protected]

icon location Security Researcher

Results 10 issues of Alena Skliarova

SEGV on unknown address due to vulnerability in heif-forked lib

Greetings. I researched this repo and crafted the malformed input which leads to crash at `ItemDataBox::read(std::vector&, unsigned long, unsigned long)` in `lib/heif/Srcs/common/itemdatabox.cpp:25`. PoC: [PoC.zip](https://github.com/monostream/tifig/files/6183148/PoC.zip) Triggered by: `./tifig -v -p PoC.heic...

Heap buffer overflow due to vulnerability in heif-forked lib

Greetings. I researched this repo and crafted the malformed input which leads to crash (heap buffer overflow) at `BitStream::extract(int, int, BitStream&)` in `lib/heif/Srcs/common/bitstream.cpp:109`. PoC: [PoC.zip](https://github.com/monostream/tifig/files/6182918/PoC.zip) Triggered by: `./tifig -v -p...

eBPF processor support

This merge request was made to add support for eBPF processor in Ghidra because of its growing popularity. eBPF is a virtual machine in the Linux kernel that allows you...

Feature: Processor
Status: Internal

SIGABRT due to Heap buffer overflow in COLLADASaxFWLTransformationLoader.cpp:50

A crafted input leads to crash (heap buffer overflow) at `COLLADASaxFWLTransformationLoader.cpp:50` in opencolladavalidator `v1.6.68` (the latest version, checked on Ubuntu/Debian packages and current master). PoC: [PoC.zip](https://github.com/KhronosGroup/OpenCOLLADA/files/6182757/PoC.zip) Triggered by: `./OpenCOLLADAValidator PoC.dae`...

SIGABRT due to Heap buffer overflow in COLLADASaxFWLTransformationLoader.cpp:117

A crafted input leads to crash (heap buffer overflow) at `COLLADASaxFWLTransformationLoader.cpp:117` in opencolladavalidator `v1.6.68` (the latest version, checked on Ubuntu/Debian packages and current master). PoC: [PoC.zip](https://github.com/KhronosGroup/OpenCOLLADA/files/6182646/PoC.zip) Triggered by: `./OpenCOLLADAValidator PoC.dae`...

SEGV on unknown address due to COLLADABUURI.cpp:225

A crafted input leads to crash (an invalid memory address dereference) at std::__cxx11::basic_string

SEGV on unknown address at strlen-avx2.S:65 due to COLLADASaxFWLSourceArrayLoader.cpp:236

A crafted input leads to crash (an invalid memory address dereference) at `strlen-avx2.S:65` in opencolladavalidator `v1.6.68` (the latest version, checked on Ubuntu/Debian packages and current master). Seems the line `accessorParameter.type...

SEGV on unknown address in COLLADASaxFWL::MeshPrimitiveInputList::appendInputElement at COLLADAFWArrayPrimitiveType.h:228

A crafted input leads to crash (an invalid memory address dereference) at `COLLADAFWArrayPrimitiveType.h:228` in opencolladavalidator `v1.6.68` (the latest version, checked on Ubuntu/Debian packages and current master). PoC: [PoC.zip](https://github.com/KhronosGroup/OpenCOLLADA/files/6176261/PoC.zip) Triggered by:...

SEGV on unknown address in COLLADASaxFWL::LibraryLightsLoader::getUniqueId at COLLADASaxFWLLibraryLightsLoader.cpp:40

A crafted input leads to crash (an invalid memory address dereference) at `COLLADASaxFWLLibraryLightsLoader.cpp:40` in opencolladavalidator `v1.6.68` (the latest version, checked on Ubuntu/Debian packages and current master). PoC: [PoC.zip](https://github.com/KhronosGroup/OpenCOLLADA/files/6176236/PoC.zip) Triggered by:...

Floating-point exception (SIGFPE) in COLLADASaxFWL::MeshLoader::initializeTexCoordsOffset() at COLLADASaxFWLMeshLoader.cpp:951

A crafted input leads to crash (divide-by-zero vulnerability) at `COLLADASaxFWLMeshLoader.cpp:951` in opencolladavalidator `v1.6.68` (the latest version, checked on Ubuntu/Debian packages and current master). PoC: [PoC.zip](https://github.com/KhronosGroup/OpenCOLLADA/files/6176071/PoC.zip) Triggered by: `./OpenCOLLADAValidator PoC.dae` ASAN...