portage-utils: stack-based buffer overflow in qfile.c

Description: Portage-utils is small and fast portage helper tools written in C. I discovered that a crafted file is able to cause a stack-based buffer overflow. The complete ASan output: ~ # qfile -f qfile-OOB-crash.log ================================================================= ==12240==ERROR: AddressSanitizer: stack-buffer-overflow on … Continue reading portage-utils: stack-based buffer overflow in qfile.c

agostino's blog
3 Comments