keystone icon indicating copy to clipboard operation
keystone copied to clipboard

Published 20 hours ago verified publisher icon keystone-engine

multiple vulnerabilities (CVE-2020-{36404,36405})

Open blshkv opened this issue 3 years ago • 1 comments

Heap-use-after-free in llvm_ks::X86Operand::getToken https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22850

Invalid-free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22371

See https://bugs.gentoo.org/799785 could you clarify if these security issues were addressed?

blshkv avatar Jan 31 '22 01:01 blshkv

I'm afraid not... :/

wtdcode avatar Feb 15 '22 10:02 wtdcode