develooper Front page | perl.perl5.porters | Postings from August 2017

[perl #131955] heap-buffer-overflow in token.c:S_scan_formline()

Tony Cook via RT
August 29, 2017 01:42
[perl #131955] heap-buffer-overflow in token.c:S_scan_formline()
Message ID:
On Sun, 27 Aug 2017 17:10:40 -0700, tonyc wrote:
> On Sun, 27 Aug 2017 01:10:04 -0700, wrote:
> > Greetings,
> > Have you take a look at fixing this bug please?
> I expect to take a close look at it tomorrow (or maybe later today).
> Just from the backtrace it doesn't appear to be a security issue, but
> I won't be sure of that until I take that close look.

This requires feeding code to the parser and isn't a security issue.

scan_formline() is being entered with PL_bufptr == PL_bufend+1 and things go downhill from there.

I haven't tracked down exactly why that's happening though.


via perlbug:  queue: perl5 status: open Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About