| عنوان | Davide Faconti BehaviorTree 4.7.0 / master commit 8d47d39 Stack-based Buffer Overflow |
|---|
| الوصف | BehaviorTree.CPP version 4.7.0 (master commit 8d47d39) contains a stack-buffer-overflow vulnerability in the script parser.
The vulnerable function ParseScript() (in src/script_parser.cpp) allocates a fixed-size buffer on the stack. The buffer is used to store diagnostic messages produced by ErrorReport. However, these messages can exceed 2048 bytes in length, which causes writes beyond the bounds of error_msgs_buffer. This results in a stack-buffer-overflow, confirmed by AddressSanitizer. |
|---|
| المصدر | ⚠️ https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1006 |
|---|
| المستخدم | sand (UID 90194) |
|---|
| ارسال | 14/09/2025 10:36 AM (8 أشهر منذ) |
|---|
| الاعتدال | 26/09/2025 08:34 AM (12 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 325955 [BehaviorTree حتى 4.7.0 Diagnostic Message /src/script_parser.cpp ParseScript error_msgs_buffer تلف الذاكرة] |
|---|
| النقاط | 20 |
|---|