Compare commits
No commits in common. 'c9-beta' and 'c9' have entirely different histories.
@ -1,39 +0,0 @@
|
||||
From bc21e89823bb3b1550e03489345864dfe1515e2c Mon Sep 17 00:00:00 2001
|
||||
From: Lukas Javorsky <ljavorsk@redhat.com>
|
||||
Date: Tue, 16 Apr 2024 10:13:35 +0000
|
||||
Subject: [PATCH] Fix the possible array overrun when the OP_TABLE_LENGTH
|
||||
|
||||
When the *code pointer holds value of 162 (OP_TABLE_LENGTH) it could
|
||||
possibly overrun the priv_OP_lengths[] array. By adding this condition
|
||||
it's not being overrun and the 0 values is added instead. It would most
|
||||
likely be 0 when overrun as the array is alligned to the lowest byte
|
||||
with zeros
|
||||
|
||||
---
|
||||
pcre_printint.c | 10 ++++++++--
|
||||
1 file changed, 8 insertions(+), 2 deletions(-)
|
||||
|
||||
diff --git a/pcre_printint.c b/pcre_printint.c
|
||||
index 60dcb55..e1e419b 100644
|
||||
--- a/pcre_printint.c
|
||||
+++ b/pcre_printint.c
|
||||
@@ -825,8 +825,14 @@ for(;;)
|
||||
fprintf(f, " %s %s", flag, priv_OP_names[*code]);
|
||||
break;
|
||||
}
|
||||
-
|
||||
- code += priv_OP_lengths[*code] + extra;
|
||||
+ if (*code >= OP_TABLE_LENGTH){
|
||||
+ // Use 0 because it would most likely be 0 when the priv_OP_lengths is overrun.
|
||||
+ // Allocator would have allign the size of this array
|
||||
+ code += 0 + extra;
|
||||
+ }
|
||||
+ else {
|
||||
+ code += priv_OP_lengths[*code] + extra;
|
||||
+ }
|
||||
fprintf(f, "\n");
|
||||
}
|
||||
}
|
||||
--
|
||||
2.44.0
|
||||
|
@ -1,44 +0,0 @@
|
||||
From 3f53de7ff720b40f547a2d55532a73b2b570ab40 Mon Sep 17 00:00:00 2001
|
||||
From: Lukas Javorsky <ljavorsk@redhat.com>
|
||||
Date: Tue, 16 Apr 2024 10:28:58 +0000
|
||||
Subject: [PATCH] Fix UNINIT SAST report for the mark* values
|
||||
|
||||
These values are initialized if the re* values is true, thus we can add
|
||||
it to the condition, so there is no possibility that the mark* values
|
||||
are not initialized
|
||||
---
|
||||
pcre_jit_test.c | 6 +++---
|
||||
1 file changed, 3 insertions(+), 3 deletions(-)
|
||||
|
||||
diff --git a/pcre_jit_test.c b/pcre_jit_test.c
|
||||
index 034cb52..e3e4a3e 100644
|
||||
--- a/pcre_jit_test.c
|
||||
+++ b/pcre_jit_test.c
|
||||
@@ -1687,21 +1687,21 @@ static int regression_tests(void)
|
||||
|
||||
if (is_successful) {
|
||||
#ifdef SUPPORT_PCRE8
|
||||
- if (mark8_1 != mark8_2) {
|
||||
+ if (re8 && (mark8_1 != mark8_2)) {
|
||||
printf("8 bit: Mark value mismatch: [%d] '%s' @ '%s'\n",
|
||||
total, current->pattern, current->input);
|
||||
is_successful = 0;
|
||||
}
|
||||
#endif
|
||||
#ifdef SUPPORT_PCRE16
|
||||
- if (mark16_1 != mark16_2) {
|
||||
+ if (re16 && (mark16_1 != mark16_2)) {
|
||||
printf("16 bit: Mark value mismatch: [%d] '%s' @ '%s'\n",
|
||||
total, current->pattern, current->input);
|
||||
is_successful = 0;
|
||||
}
|
||||
#endif
|
||||
#ifdef SUPPORT_PCRE32
|
||||
- if (mark32_1 != mark32_2) {
|
||||
+ if (re32 && (mark32_1 != mark32_2)) {
|
||||
printf("32 bit: Mark value mismatch: [%d] '%s' @ '%s'\n",
|
||||
total, current->pattern, current->input);
|
||||
is_successful = 0;
|
||||
--
|
||||
2.44.0
|
||||
|
Binary file not shown.
Loading…
Reference in new issue