A NULL pointer dereference exists in the function traits_parse in abc.c

[cxlzff]

system info

Ubuntu x86_64, clang 6.0, swfdump (latest master a9d5082)

Command line

./src/swfdump -D @@

AddressSanitizer output

==47344==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000030 (pc 0x000000488d17 bp 0x000000000000 sp 0x7fffffffdd20 T0) #0 0x488d16 in traits_parse as3/abc.c:482 #1 0x495d41 in swf_ReadABC as3/abc.c:946 #2 0x409045 in main /test/swftools-asan/src/swfdump.c:1577 #3 0x7ffff68a683f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2083f) #4 0x40c168 in _start (/test/swftools-asan/src/swfdump+0x40c168)

AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV as3/abc.c:482 traits_parse ==47344==ABORTING

POC traits_parse_poc