heap-buffer-overflow at json_value_parse

Question

heap-buffer-overflow at json_value_parse

NotmebutWind opened this issue 2 years ago · comments

CC=gcc -fsanitize=address make
test.c:
char* jstr = "{ "";
json_value_t *val = json_value_parse(jstr);

use json_value_parse to parse input "{ "" will cause a heap-buffer-overflow error.

==2352670==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x602000109953 at pc 0x55900a20cc38 bp 0x7ffd112d2dc0 sp 0x7ffd112d2db0
READ of size 1 at 0x602000109953 thread T0
#0 0x55900a20cc37 in json_value_parse /opt1/software/json-parser/json_parser.c:685
#1 0x55900a213a4f in main /opt1/software/json-parser/test.c:184

xiehan · Answer 1 · Wed Jan 04 2023 03:00:37 GMT+0800 (China Standard Time)

Thank you. It's a very stupid mistake…… I fixed it in the latest commit: 2b2b689

liu-yichen-github · Answer 2 · Sat Apr 01 2023 15:52:43 GMT+0800 (China Standard Time)

Can you tell me an example of triggering this error?

xiehan · Answer 3 · Sat Apr 01 2023 21:22:31 GMT+0800 (China Standard Time)

The bug has be fixed. Code that triggers the error in the previous version:

void main()
{
    const char *text = "{\"";
    json_value_t *value = json_value_parse(text);
}

liu-yichen-github · Answer 4 · Tue Apr 11 2023 19:52:53 GMT+0800 (China Standard Time)

Okay, thank you. I understand your point and I have reproduced the problem.