diff options
| author | 2016-11-10 01:31:23 +0100 | |
|---|---|---|
| committer | 2016-11-10 01:31:23 +0100 | |
| commit | a4ca24c4fe316bc102b9fa52f808d206ab8cd24b (patch) | |
| tree | 884d0049709a7e011a28b3e7a8c529c262de676a /fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392 | |
| parent | 1ae55728f427532234be85a90322e4a3c77b4074 (diff) | |
| download | libplist-a4ca24c4fe316bc102b9fa52f808d206ab8cd24b.tar.gz libplist-a4ca24c4fe316bc102b9fa52f808d206ab8cd24b.tar.bz2 | |
bplist: Prevent out-of-bounds read in plist_from_bin() when parsing offset_table
offset_table_index is read from the file, so we have full control over it.
This means we can point offset_table essentially anywhere we want, which can
lead to an out-of-bounds read when it will be used later on.
Diffstat (limited to 'fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392')
0 files changed, 0 insertions, 0 deletions
