Alex
Alex
Just checking some things...
As discussed in https://github.com/seladb/PcapPlusPlus/pull/918 a separated tracking issue. Steps to reproduce - add the following configuration to .cirrus.yml: ```yaml task: name: Regression Tests Linux (Memory Behavior Sanitizer) container: image: seladb/ubuntu1804:latest...
Hi, I have made several pull requests with memory corruption fixes two weeks ago, but got no feedback :( https://github.com/sleuthkit/sleuthkit/pulls/sashashura If the end of summer is inconvenient for maintainers because...
The `shouldTreatAsDirectory` function uses WIN32 specific definitions.
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35648 The root cause is in call to in `(size_t) ((a_fs->block_count + 7) / 8))` `fatfs_inode_walk`. When `a_fs->block_count` is max 64bit int it leads to integer overflow and allocation of...
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36024 and https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36098 and https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36021 and https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36122 and https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38365 The `val_data` points to invalid memory because of invalid `t.val_offset`.
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36027 and https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36025 The `_table_data.toc` points to invalid memory because of the wrong offset set in `APFSBtreeNode` constructor.
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36955 The `stack_seen` pointer gets corrupted because of `strncat(a_dinfo->dirs, "/", DIR_STRSZ-1);` in `tsk_fs_dir_walk_recursive`. When the `a_dinfo->dirs` buffer is full (4095 chars are filled with data and the last 4096's char...
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46779 The `runlist_head` parameter in `ntfs_make_data_run` called from `ntfs_load_bmap` is calculated as `data_attr + run_off`. Even though it is checked before as: ```cpp if ((run_off < 48) || (run_off >=...
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43923 The `sourceEnd` in `tsk_UTF16toUTF8` is calculated as `(UTF16 *) ((uintptr_t) name16 + fname->nlen * 2)` in `ntfs_dent_copy` points past the `endaddr` calculated in `ntfs_proc_idxentry`.