Open marcinguy opened 3 years ago
OK, @deian replied to other similar issue (https://github.com/PLSysSec/sys/issues/17)
"The path is feasible but unless the tool spits out that the attack is possible it means you can reach that block but likely can't trigger the bug."
So it seems I cannot trigger the bug.
What does the "Right" and value mean? Maximum value for a 32-bit unsigned integer in computing
What does the "Right" and value mean?
If path is possible does it mean the OOB is possible? Or it has to state "attack is possible"?
Tried to pinpoint the code, but wasn't able to... seems like this is a linked function. Don't know how to find it.
Can somebody explain the output of this check and help to diagnose the finding?
Or the bug is not "real", "effective"?
C source - https://github.com/marcinguy/public/blob/master/midi.cpp LL - https://github.com/marcinguy/public/blob/master/midi.o.ll (with debugs)
Help is appreciated.
Thanks,