rasm2 473664b1e7fa76bcb72a1cb4f1c01e1e820b7c81 negative size paramИнформация

Название	www.radare.org/ radare2/rasm2 473664b1e7fa76bcb72a1cb4f1c01e1e820b7c81 negative size param
Описание	Description A segv can occur in radare2/rasm2 when using the "-i 6 -E 'mov eax, 30'" options. This issue leads to negative-size-param. Affected Version radare : https://github.com/radareorg/radare2/commit/473664b1e7fa76bcb72a1cb4f1c01e1e820b7c81 Steps to Reproduce ./bins/bin/rasm2 -i 6 -E 'mov eax, 30' ==1539759==ERROR: AddressSanitizer: negative-size-param: (size=-1) #0 0x556fedbb114c in __asan_memmove (./radare2/bins/bin/rasm2+0xa014c) (BuildId: c182a69a7b8fb8b422226bca07598a5ba9758698) #1 0x7fb5c11d72cf in r_main_rasm2 ./radare2/libr/main/rasm2.c:1063:5 #2 0x556fedbec7a1 in main ./radare2/binr/rasm2/rasm2.c:6:9 #3 0x7fb5c0f9c082 in __libc_start_main /build/glibc-FcRMwW/glibc-2.31/csu/../csu/libc-start.c:308:16 #4 0x556fedb2f31d in _start (./radare2/bins/bin/rasm2+0x1e31d) (BuildId: c182a69a7b8fb8b422226bca07598a5ba9758698) 0x602000009ddc is located 0 bytes to the right of 12-byte region [0x602000009dd0,0x602000009ddc) allocated by thread T0 here: #0 0x556fedb9c4c3 in strdup (./radare2/bins/bin/rasm2+0x8b4c3) (BuildId: c182a69a7b8fb8b422226bca07598a5ba9758698) #1 0x7fb5c11d7259 in r_main_rasm2 ./radare2/libr/main/rasm2.c:1059:19 #2 0x556fedbec7a1 in main ./radare2/binr/rasm2/rasm2.c:6:9 #3 0x7fb5c0f9c082 in __libc_start_main /build/glibc-FcRMwW/glibc-2.31/csu/../csu/libc-start.c:308:16 SUMMARY: AddressSanitizer: negative-size-param (./radare2/bins/bin/rasm2+0xa014c) (BuildId: c182a69a7b8fb8b422226bca07598a5ba9758698) in __asan_memmove ==1539759==ABORTING Env Distributor ID: Ubuntu Description: Ubuntu 20.04.6 LTS Release: 20.04 Codename: focal
Источник	⚠️ https://github.com/radareorg/radare2/issues/23953#issue-2844325926
Пользователь	wenjusun (UID 80422)
Представление	11.02.2025 14:06 (1 Год назад)
Модерация	16.02.2025 20:59 (5 days later)
Статус	принято
Запись VulDB	295986 [radare2 5.9.9 33286 rasm2 /libr/main/rasm2.c повреждение памяти]
Баллы	20

◂ Предыдущий Обзор Далее ▸

Interested in the pricing of exploits?

See the underground prices here!