Open XmiliaH opened 3 years ago
There is an integer overflow in ravi_create_slice at: https://github.com/dibyendumajumdar/ravi/blob/56a59a1f3117a8bc88206305b94398678de1bdff/src/lapi.c#L903 This can result in slices with a length or index that exceeds that of the parent as can be seen in the following sample that segfaults.
ravi_create_slice
local t = table.intarray(3) local slice = table.slice(t, 2, 0xFFFFFFFE) slice[0xFFFFFFF] = 1
Thank you for the report
dibyendumajumdar
commented
3 years ago dibyendumajumdar
commented
3 years ago
There is an integer overflow in
ravi_create_sliceat: https://github.com/dibyendumajumdar/ravi/blob/56a59a1f3117a8bc88206305b94398678de1bdff/src/lapi.c#L903 This can result in slices with a length or index that exceeds that of the parent as can be seen in the following sample that segfaults.