#48387 ASAN invalid read in cos_cache.c
Closed: wontfix None Opened 5 years ago by firstyear.

==7050== ERROR: AddressSanitizer: global-buffer-overflow on address 0x7f643b32c5ff at pc 0x7f643b3217aa bp 0x7f64331c5f60 sp 0x7f64331c5f50 READ of size 1 at 0x7f643b32c5ff thread T5 #0 0x7f643b3217a9 in cos_cache_backwards_stricmp_and_clip /home/wibrown/development/389ds/ds/ldap/servers/plugins/cos/cos_cache.c:3428 Issue exists in the length check, which allows the value to go to -1 causing the invalid read.

commit a3a11f9c22898c09ca26c4c0e9d6ef6c50e6fde4
To ssh://git.fedorahosted.org/git/389/ds.git
f5b9053..d7c71db master -> master


Metadata Update from @firstyear:
- Issue assigned to firstyear
- Issue set to the milestone:

4 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/1718

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: Fixed)

a year ago

Login to comment on this ticket.