JeasonTom

icon indicating a website link bladchan.github.io

icon company Sichuan University icon location Chengdu, Sichuan icon location M.S. in Sichuan University. My research is fuzzing.

Results 19 issues of JeasonTom

Unknown-crash in function dwarf::line_table::begin at dwarf/line.cc:153

1 comment

Hi, I am running some experiments for AFLAPI and it has found a Unknown-crash in function dwarf::line_table::begin at dwarf/line.cc:153. This bug may allows attackers to cause **DoS**, so I report...

SEGV in function elf::segment::segment at elf/elf.cc:180

Hi, I am running some experiments for AFLAPI and it has found a SEGV in function elf::segment::segment at elf/elf.cc:180. This bug may allows attackers to cause DoS, so I report...

Allocation-size-too-big in LIEF::DEX::Method

1 comment

**Describe the bug** A bad DEX file may lead the LIEF::DEX::parse() to new a large size LIEF::DEX::Method* object which absolutely allocation failed. This may cause SEGV in the future. Poc...

bug
Parser
dex

SEGV in LIEF::DEX::Type::parse at DEX/Type.cpp:107

**Describe the bug** A bad DEX file which can lead LIEF::DEX::Parser::parse()/LIEF::VDEX::Parser::parse() to segmentation fault. Poc here : [dex_segv_3.zip](https://github.com/lief-project/LIEF/files/9590727/dex_segv_3.zip) **To Reproduce** 1. Build the whole project with **ASAN** 2. Drive programs...

bug
Parser
dex

SEGV in LIEF::DEX::Parser::parse_methods at DEX/Parser.tcc:335

**Describe the bug** A bad DEX/VDEX file which can lead LIEF::DEX::Parser::parse()/LIEF::VDEX::Parser::parse() to segmentation fault. Poc here : For DEX : [dex_segv_2.zip](https://github.com/lief-project/LIEF/files/9585589/dex_segv_2.zip) For VDEX : [vdex_segv_2.zip](https://github.com/lief-project/LIEF/files/9585571/vdex_segv_2.zip) **To Reproduce** 1. Build the...

bug
Parser
dex

SEGV in LIEF::DEX::Field::set_static at DEX/Field.cpp:64

**Describe the bug** A bad DEX file which can lead LIEF::DEX::Parser::parse() to segmentation fault. Poc here : [dex_segv_1.zip](https://github.com/lief-project/LIEF/files/9585512/dex_segv_1.zip) **To Reproduce** 1. Build the whole project with **ASAN** 2. Drive program...

bug
Parser
dex

SEGV in LIEF::DEX::Method::set_virtual at DEX/Method.cpp:84

**Describe the bug** A bad VDEX file which can lead LIEF::VDEX::Parser::parse() to segmentation fault. Poc here : [vdex_segv_1.zip](https://github.com/lief-project/LIEF/files/9585386/vdex_segv_1.zip) **To Reproduce** 1. Build the whole project with **ASAN** 2. Drive program...

bug
Parser
dex

Heap-buffer-overflow in LIEF::DEX::Parser::parse_prototypes at DEX/Parser.tcc:292

**Describe the bug** A bad DEX file which can lead **LIEF::DEX::Parser::parse** to a heap-buffer-overflow(read) issue. Poc here: [dex_buffer_overflow_3.zip](https://github.com/lief-project/LIEF/files/9585350/dex_buffer_overflow_3.zip) **To Reproduce** 1. Build the whole project with **ASAN** 2. Drive program...

bug
Parser
dex

SEGV / Heap-buffer-overflow in LIEF::DEX::Parser::parse_field / LIEF::DEX::Parser::parse_fields at DEX/Parser.tcc

1 comment

**Describe the bug** A bad DEX file which can lead **LIEF::DEX::Parser::parse** to a heap-buffer-overflow(read)/SEGV issue. Poc here: For heap-buffer-overflow: [dex_buffer_overflow_1.zip](https://github.com/lief-project/LIEF/files/9585234/dex_buffer_overflow_1.zip) For SEGV: [dex_segv_4.zip](https://github.com/lief-project/LIEF/files/9590729/dex_segv_4.zip) **To Reproduce** 1. Build the whole project...

bug
Parser
dex

Heap-buffer-overflow in xlnt::detail::xlsx_producer::write_relationships at xlsx_producer.cpp:3440

Hi, I am running some experiments for AFLAPI and it has found a heap-buffer-overflow in xlnt::detail::izstream::read_central_header. It seems to be hard to be exploited, but this bug also allows attackers...