New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PERL-5.26.1 negative-size-param #16342
Comments
From sraums2498@gmail.com================================================================= ==69672==AddressSanitizer CHECK failed: -- |
From sraums2498@gmail.com==3861==ERROR: AddressSanitizer: global-buffer-overflow on address 0x0000030f2da1 is located 63 bytes to the left of global variable 'PL_Yes' -- |
From sraums2498@gmail.com |
From @hvdsThis reduces to: With warnings, I note that the unpack is _not_ warning about an undef argument. I'll look more at this if nobody else gets there first: I suspect the stack is getting out of sync somehow. Hugo |
The RT System itself - Status changed from 'new' to 'open' |
From @hvdsThis is a minor variant of rt132654, I'll merge them. Hugo |
The RT System itself - Status changed from 'new' to 'open' |
From @tonycozOn Tue, 09 Jan 2018 00:40:48 -0800, hv wrote:
The s/// turns $_ into "abcdefhg". The unpack "P", which uses $_ if no EXPR is supplied, then attempts to use those bytes as a pointer, which of course fails horribly. As the documentation in unpack says: The "p" and "P" formats should be used with care. Since Perl has Moving to the public queue (it isn't a security issue) and rejecting. Tony |
@tonycoz - Status changed from 'open' to 'rejected' |
Migrated from rt.perl.org#132654 (status was 'rejected')
Searchable as RT132654$
The text was updated successfully, but these errors were encountered: