[New-bugs-announce] [issue29732] Heap out of bounds read in tok_nextc()
Kamil Frankowicz
report at bugs.python.org
Mon Mar 6 03:13:44 EST 2017
New submission from Kamil Frankowicz:
After some fuzz testing I found a crashing test case.
Version: 2.7.13 compiled from source with Clang 3.9.1.
To reproduce: python python_hoobr_tok_nextc.py
Extract from Valgrind log (full log file at https://gist.github.com/fumfel/f9780e567dec761f8524523fff040742):
==15583== Process terminating with default action of signal 11 (SIGSEGV)
==15583== Bad permissions for mapped region at address 0x5F36000
==15583== at 0x41EBC4: tok_nextc (tokenizer.c:861)
==15583== by 0x41ABA2: tok_get (tokenizer.c:1568)
==15583== by 0x41ABA2: PyTokenizer_Get (tokenizer.c:1681)
==15583== by 0x4171D4: parsetok (parsetok.c:159)
==15583== by 0x417DC0: PyParser_ParseFileFlagsEx (parsetok.c:106)
==15583== by 0x5C4A1D: PyParser_ASTFromFile (pythonrun.c:1499)
==15583== by 0x5C4C28: PyRun_FileExFlags (pythonrun.c:1354)
==15583== by 0x5C4009: PyRun_SimpleFileExFlags (pythonrun.c:948)
==15583== by 0x5C34AA: PyRun_AnyFileExFlags (pythonrun.c:752)
==15583== by 0x416478: Py_Main (main.c:640)
==15583== by 0x578782F: (below main) (libc-start.c:291)
----------
components: Interpreter Core
files: python_hoobr_tok_nextc.py
messages: 289078
nosy: Kamil Frankowicz
priority: normal
severity: normal
status: open
title: Heap out of bounds read in tok_nextc()
type: crash
versions: Python 2.7
Added file: http://bugs.python.org/file46704/python_hoobr_tok_nextc.py
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue29732>
_______________________________________
More information about the New-bugs-announce
mailing list