summaryrefslogtreecommitdiffstats
path: root/fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392
diff options
context:
space:
mode:
authorGravatar Filippo Bigarella2016-11-10 01:31:23 +0100
committerGravatar Nikias Bassen2016-11-10 01:31:23 +0100
commita4ca24c4fe316bc102b9fa52f808d206ab8cd24b (patch)
tree884d0049709a7e011a28b3e7a8c529c262de676a /fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392
parent1ae55728f427532234be85a90322e4a3c77b4074 (diff)
downloadlibplist-a4ca24c4fe316bc102b9fa52f808d206ab8cd24b.tar.gz
libplist-a4ca24c4fe316bc102b9fa52f808d206ab8cd24b.tar.bz2
bplist: Prevent out-of-bounds read in plist_from_bin() when parsing offset_table
offset_table_index is read from the file, so we have full control over it. This means we can point offset_table essentially anywhere we want, which can lead to an out-of-bounds read when it will be used later on.
Diffstat (limited to 'fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392')
0 files changed, 0 insertions, 0 deletions