Skip to content

Fix several more memory issues #90

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Sep 28, 2022
Merged

Fix several more memory issues #90

merged 4 commits into from
Sep 28, 2022

Conversation

@kjdyck
Copy link
Contributor

@kjdyck kjdyck commented Sep 28, 2022

This PR fixes a few memory issues:

  1. Downcast to unrelated type in lib/ofx_container_account.cpp
  2. Use after free in lib/ofx_container_main.cpp
  3. Heap buffer overflow in lib/ofx_preproc.cpp

Test cases that exercise each are included.

cstim
cstim reviewed Sep 28, 2022
View reviewed changes
doc/ofx_sample_files/use-after-free.ofx
@@ -0,0 +1,7 @@
<OFC>
Copy link
Member

@cstim cstim Sep 28, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Out of curiosity: Do those test files actually cause a failed "make check" (autotools) or "make test" (cmake) if the source code fix isn't applied? Because when I quickly checked that, the simple test case refuses to load those files with "unknown format" error and hence doesn't really run into the memory error. Would this need some different calling arguments?

Copy link
Contributor Author

@kjdyck kjdyck Sep 28, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

They admittedly aren't that great as test cases. I you have compile libofx with -fsanitize=address, running ofxdump on the test cases will result in memory errors being reported. But even then, the test harness considers that a 'failure' same as a format error.

@cstim cstim merged commit d937882 into libofx:master Sep 28, 2022
@kjdyck kjdyck deleted the fix-everything branch September 28, 2022 22:04
@kjdyck kjdyck mentioned this pull request Sep 28, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cstim cstim cstim approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kjdyck @cstim