| शीर्षक | Davide Faconti BehaviorTree 4.7.0 / master commit 8d47d39 NULL Pointer Dereference |
|---|
| विवरण | BehaviorTree.CPP version 4.7.0 (master commit 8d47d39) is vulnerable to a null pointer dereference / invalid JSON access in the JsonExporter::fromJson() function (src/json_export.cpp).
The function assumes the presence of a __type field and directly indexes into JSON objects without validating their structure. When the source parameter is a JSON array whose first element is not an object (or when the __type field is missing), the code attempts to access source[0]["__type"], resulting in undefined behavior.
This leads to a segmentation fault in nlohmann::json::is_object() when dereferencing a null internal pointer.
|
|---|
| स्रोत | ⚠️ https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1008 |
|---|
| उपयोगकर्ता | sand (UID 90194) |
|---|
| सबमिशन | 14/09/2025 10:33 AM (8 महीनों पहले) |
|---|
| संयम | 26/09/2025 08:34 AM (12 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 325954 [BehaviorTree तक 4.7.0 /src/json_export.cpp JsonExporter::fromJson स्रोत सेवा अस्वीकार] |
|---|
| अंक | 20 |
|---|