Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Another uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) #273

Closed
cowtowncoder opened this issue Apr 5, 2021 · 0 comments
Labels
fuzz Issue found by OssFuzz
Milestone

Comments

@cowtowncoder
Copy link
Member

cowtowncoder commented Apr 5, 2021

(note: similar to #272 reported by ossfuzz as 32912, see https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32912)

Looks like there is a problem in handling of chunked text, wherein truncated multi-byte UTF-8 code point at the end of chunk is not detected, leading to overrun (and potential ArrayIndexOutOfBoundsException).

Note that the problem is truncated UTF-8 character and not handling of adjacent chunks: as per CBOR specification, a single UTF-8 unit is NOT allowed to be split across chunks but has to align.

@cowtowncoder cowtowncoder added 2.13 fuzz Issue found by OssFuzz labels Apr 5, 2021
cowtowncoder added a commit that referenced this issue Jul 2, 2021
@cowtowncoder cowtowncoder added this to the 2.13.0 milestone Jul 2, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
fuzz Issue found by OssFuzz
Projects
None yet
Development

No branches or pull requests

1 participant