develooper Front page | perl.perl5.porters | Postings from April 2016

Re: [perl #127956] null pointer dereference in Perl_sv_setpvn atsv.c:4896

Thread Previous | Thread Next
From:
Smylers
Date:
April 22, 2016 08:37
Subject:
Re: [perl #127956] null pointer dereference in Perl_sv_setpvn atsv.c:4896
Message ID:
20160422083735.GA2050@stripey.com
Brian Carpenter writes:

> While fuzzing Perl v5.24.0-RC1-2-gde1d2c7 with American Fuzzy Lop, I
> discovered that perl -e '$0=$.^=*.=$0=0' causes a null pointer
> dereference and crash. This crash affects Perl v5.14.2 as well.

Smaller case that still yields the crash, without special variables:

  perl -e '$x ^= *x = 0'

Also:
  
  perl -e '$x |= *x = 0'

But not:

  perl -e '$x &= *x = 0'
  Can't coerce UNKNOWN to string in bitwise and (&) at -e line 1.

Smylers
-- 
http://twitter.com/Smylers2

Thread Previous | Thread Next


nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About