Closed ragusaa closed 6 months ago
The yara parser can potentially overwrite heap buffers parsing invalid yara files. Exit on error to avoid this. These overwrites are only observed when running with address sanitization and mpool disabled.
I am not sure if this is a viable solution, but it does prevent the ossfuzz errors. This will require more testing.
The yara parser can potentially overwrite heap buffers parsing invalid yara files. Exit on error to avoid this. These overwrites are only observed when running with address sanitization and mpool disabled.