ragusaa
commented
7 months ago I am not sure if this is a viable solution, but it does prevent the ossfuzz errors. This will require more testing.
Closed ragusaa closed 6 months ago
ragusaa
commented
7 months ago I am not sure if this is a viable solution, but it does prevent the ossfuzz errors. This will require more testing.
The yara parser can potentially overwrite heap buffers parsing invalid yara files. Exit on error to avoid this. These overwrites are only observed when running with address sanitization and mpool disabled.