mirrors/FreeRDP
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
45a54b1883
FreeRDP/libfreerdp/common
History
Sergey Bronnikov 62697e58d9 [libfreerdp] Pass a zero-terminated string to freerdp_assistance_parse_file_buffer 
```
READ of size 2 at 0x602000000091 thread T0
SCARINESS: 14 (2-byte-read-heap-buffer-overflow)
    #0 0x4c6fb9 in StrstrCheck(void*, char*, char const*, char const*) /src/llvm-project/compiler-rt/lib/asan/../sanitizer_common/sanitizer_common_interceptors.inc:580:5
    #1 0x4c6df1 in strstr /src/llvm-project/compiler-rt/lib/asan/../sanitizer_common/sanitizer_common_interceptors.inc:597:5
    #2 0x56c9ba in freerdp_assistance_parse_file_buffer /src/FreeRDP/libfreerdp/common/assistance.c:743:6
    #3 0x56b58e in parse_file_buffer /src/FreeRDP/libfreerdp/common/test/TestFuzzCommonAssistanceParseFileBuffer.c:11:11
    #4 0x56b58e in LLVMFuzzerTestOneInput /src/FreeRDP/libfreerdp/common/test/TestFuzzCommonAssistanceParseFileBuffer.c:20:2
    #5 0x43f5e3 in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:611:15
    #6 0x440994 in fuzzer::Fuzzer::ReadAndExecuteSeedCorpora(std::__Fuzzer::vector<fuzzer::SizedFile, std::__Fuzzer::allocator<fuzzer::SizedFile> >&) /src/llvm-project/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:804:3
```
2023-06-07 14:25:57 +02:00
..
test [libfreerdp] Pass a zero-terminated string to freerdp_assistance_parse_file_buffer 2023-06-07 14:25:57 +02:00
addin.c [build] fix memory sanitizer stack frame warnings 2023-06-07 09:14:45 +02:00
assistance.c [libfreerdp] Fix msan's use-of-uninitialized-value 2023-06-07 14:25:57 +02:00
CMakeLists.txt Added expert settings /tune and /tune-list 2020-04-21 17:30:24 +02:00
settings_getters.c [settings] add FreeRDP_ClipboardFeatureMask 2023-05-25 16:26:39 +02:00
settings_str.c [settings] add FreeRDP_ClipboardFeatureMask 2023-05-25 16:26:39 +02:00
settings.c [build] fix memory sanitizer stack frame warnings 2023-06-07 09:14:45 +02:00