[llvm-bugs] [Bug 33485] New: use-after-free or Assertion `Tok.is(tok::eof) && Tok.getEofData() == AttrEnd.getEofDat a()'.
via llvm-bugs
llvm-bugs at lists.llvm.org
Fri Jun 16 10:54:41 PDT 2017
https://bugs.llvm.org/show_bug.cgi?id=33485
Bug ID: 33485
Summary: use-after-free or Assertion `Tok.is(tok::eof) &&
Tok.getEofData() == AttrEnd.getEofDat a()'.
Product: new-bugs
Version: unspecified
Hardware: PC
OS: Linux
Status: NEW
Severity: enhancement
Priority: P
Component: new bugs
Assignee: unassignedbugs at nondot.org
Reporter: kcc at google.com
CC: llvm-bugs at lists.llvm.org
r305508, x86_64 linux.
echo Y2Fzc/9Ge2M8KEYoKEazRig7OykpKSko | base64 -d | clang -x c++ -
tools/clang/lib/Parse/ParseExprCXX.cpp:3173: ExprResult
clang::Parser::ParseCXXAmbiguousParenExpression(clang::Parser::ParenParseOpt
ion &, ParsedType &, clang::BalancedDelimiterTracker &,
clang::ColonProtectionRAIIObject &): Assertion `Tok.is(tok::eof) &&
Tok.getEofData() == AttrEnd.getEofData()' failed.
in a no-assert build this manifests as 20-byte read-heap-use-after-free in
clang::TokenLexer::Lex(clang::Token&)
found by clang-fuzzer
--
You are receiving this mail because:
You are on the CC list for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-bugs/attachments/20170616/ee19d3ae/attachment-0001.html>
More information about the llvm-bugs
mailing list