Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Evil Memory Address Write in function_prepare_parse #19

Open
haruki3hhh opened this issue Mar 6, 2024 · 0 comments
Open

Evil Memory Address Write in function_prepare_parse #19

haruki3hhh opened this issue Mar 6, 2024 · 0 comments

Comments

@haruki3hhh
Copy link

version

e81176b

compile

make vmir.asan

asan report

root@9dc6ce043bcb:~/Ablation/vmir/crashes# ../vmir.asan  id:000005,sig:11,src:000000,op:arith8,pos:8,val:+9
AddressSanitizer:DEADLYSIGNAL
=================================================================
==4108439==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000024 (pc 0x55e2684c62d8 bp 0x7ffc1f605ec0 sp 0x7ffc1f605ea0 T0)
==4108439==The signal is caused by a WRITE memory access.
==4108439==Hint: address points to the zero page.
    #0 0x55e2684c62d7 in function_prepare_parse src/vmir_function.c:145
    #1 0x55e2685498b9 in wasm_parse_section_code src/vmir_wasm_parser.c:1243
    #2 0x55e26854b9b3 in wasm_parse_module src/vmir_wasm_parser.c:1422
    #3 0x55e26854e1a0 in vmir_load src/vmir.c:920
    #4 0x55e2684b59c9 in main src/main.c:166
    #5 0x7ffa7c5e4082 in __libc_start_main ../csu/libc-start.c:308
    #6 0x55e2684b4d2d in _start (/root/Ablation/vmir/vmir.asan+0x12d2d)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV src/vmir_function.c:145 in function_prepare_parse
==4108439==ABORTING

reproduce

./vmir https://github.com/haruki3hhh/fuzzing/blob/main/vmir/id%3A000005%2Csig%3A11%2Csrc%3A000000%2Cop%3Aarith8%2Cpos%3A8%2Cval%3A%2B9

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant