| Titel | Davide Faconti BehaviorTree 4.7.0 / master commit 8d47d39 NULL Pointer Dereference |
|---|
| Beschreibung | BehaviorTree.CPP version 4.7.0 (master commit 8d47d39) is vulnerable to a null pointer dereference / invalid JSON access in the JsonExporter::fromJson() function (src/json_export.cpp).
The function assumes the presence of a __type field and directly indexes into JSON objects without validating their structure. When the source parameter is a JSON array whose first element is not an object (or when the __type field is missing), the code attempts to access source[0]["__type"], resulting in undefined behavior.
This leads to a segmentation fault in nlohmann::json::is_object() when dereferencing a null internal pointer.
|
|---|
| Quelle | ⚠️ https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1008 |
|---|
| Benutzer | sand (UID 90194) |
|---|
| Einreichung | 14.09.2025 10:33 (vor 8 Monaten) |
|---|
| Moderieren | 26.09.2025 08:34 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 325954 [BehaviorTree bis 4.7.0 /src/json_export.cpp JsonExporter::fromJson Quelle Denial of Service] |
|---|
| Punkte | 20 |
|---|