| Название | Jens Axboe Fio 3.41 / master commit 84787ad Use After Free |
|---|
| Описание | fio version 3.41 (master commit 84787ad) contains a heap-use-after-free vulnerability in its option parsing logic. During jobfile parsing, the function __parse_jobs_ini() (init.c) allocates an options array (opts) that is later freed. However, the freed array is still passed into fio_options_parse() (options.c), which calls sort_options() to sort the options using qsort().
The qsort() comparator (opt_cmp() in parse.c:1139) dereferences entries from the freed memory, leading to a use-after-free (UAF). |
|---|
| Источник | ⚠️ https://github.com/axboe/fio/issues/1981 |
|---|
| Пользователь | ahuo (UID 90189) |
|---|
| Представление | 14.09.2025 10:22 (8 месяцы назад) |
|---|
| Модерация | 21.09.2025 18:05 (7 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 325181 [axboe fio до 3.41 init.c __parse_jobs_ini повреждение памяти] |
|---|
| Баллы | 20 |
|---|