Closed joachimmetz closed 6 years ago
==15992== Invalid read of size 8
==15992== at 0x41018E: libpff_name_to_id_map_entry_read (libpff_name_to_id_map.c:668)
==15992== by 0x40FDE9: libpff_name_to_id_map_read (libpff_name_to_id_map.c:498)
==15992== by 0x404490: libpff_file_open_read (libpff_file.c:1081)
==15992== by 0x4039E9: libpff_file_open_file_io_handle (libpff_file.c:580)
==15992== by 0x403748: libpff_file_open (libpff_file.c:322)
==15992== by 0x401651: info_handle_open_input (info_handle.c:298)
==15992== by 0x402AA9: main (pffinfo.c:284)
disclosed PoC files affecting libpff
http://seclists.org/fulldisclosure/2018/Jun/15
This issue was not directly reported to the libpff project
Also looks overkill to get a CVE for a minor OOB read.
Until date no proof has been presented to back up these claims
Note that libpff-alpha-20120802.tar.gz is significant differently than the current experimental version.