New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
(possible) stack-buffer-overflow in S_missingterm (toke.c:580) #15519
Comments
From @geeknikThe attached test case triggers a (possible) stack-buffer-overflow in S_missingterm (toke.c:580). I say possible because ASAN reports this may be a false positive and I'm not an Perl internals expert. This was found with AFL, ASAN and libdislocator.so and affects v5.25.4 (v5.25.3-245-g2e66fe9). Perl 5.20.2 doesn't return any sort of an error. ==68681==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x7ffeb3e392ad at pc 0x000000698806 bp 0x7ffeb3e39270 sp 0x7ffeb3e39268 Address 0x7ffeb3e392ad is located in stack of thread T0 at offset 45 in frame This frame has 1 object(s): |
From @iabynOn Mon, Aug 15, 2016 at 03:23:18PM -0700, Brian Carpenter wrote:
Thanks, fixed by the following: commit e487ff5 buffer overflow in "string terminator" err msg -- |
The RT System itself - Status changed from 'new' to 'open' |
@iabyn - Status changed from 'open' to 'pending release' |
From @khwilliamsonThank you for filing this report. You have helped make Perl better. With the release today of Perl 5.26.0, this and 210 other issues have been Perl 5.26.0 may be downloaded via: If you find that the problem persists, feel free to reopen this ticket. |
@khwilliamson - Status changed from 'pending release' to 'resolved' |
Migrated from rt.perl.org#128952 (status was 'resolved')
Searchable as RT128952$
The text was updated successfully, but these errors were encountered: