[LLVMbugs] [Bug 13713] New: Address Sanitizer misses a stack-buffer-overflow problem in JtR
bugzilla-daemon at llvm.org
bugzilla-daemon at llvm.org
Tue Aug 28 07:26:39 PDT 2012
http://llvm.org/bugs/show_bug.cgi?id=13713
Bug #: 13713
Summary: Address Sanitizer misses a stack-buffer-overflow
problem in JtR
Product: new-bugs
Version: 3.1
Platform: PC
OS/Version: Linux
Status: NEW
Severity: enhancement
Priority: P
Component: new bugs
AssignedTo: unassignedbugs at nondot.org
ReportedBy: assie181 at gmail.com
CC: llvmbugs at cs.uiuc.edu
Classification: Unclassified
Address Sanitizer misses a stack-buffer-overflow problem in JtR
Steps to reproduce
==================
git clone https://github.com/magnumripper/magnum-jumbo.git
cd magnum-jumbo/src
git checkout 27935699296d47a dmg_fmt_plug.c
make linux-x86-64-clang-debug
../run/john -fo:dmg -t # this runs fine but it shouldn't!
✗ clang --version
clang version 3.1 (branches/release_31)
Target: x86_64-unknown-linux-gnu
Thread model: posix
Problematic Code (dmg_fmt_plug.c)
=================================
unsigned char iv[16];
...
HMAC_Final(&hmacsha1_ctx, iv, (unsigned int *) &mdlen); // this write 20 bytes
to iv!
I tried to create standalone test cases for reproducing this problem but
couldn't. Address Sanitizer worked fine for all my test cases.
--
Configure bugmail: http://llvm.org/bugs/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the llvm-bugs
mailing list