Closed PerGraa closed 7 years ago
Hi.
I have been playing around with afl fuzzing and the attached input file seems to provoke a heap buffer overflow in gason. I have not investigated in depth, but afl-analyze suggests that handling of backslash in input is to blame.
gason.crash.00.min.json.txt
A case of forgotten zero termination. sigh Move along, nothing to see :)
Hi.
I have been playing around with afl fuzzing and the attached input file seems to provoke a heap buffer overflow in gason. I have not investigated in depth, but afl-analyze suggests that handling of backslash in input is to blame.
gason.crash.00.min.json.txt