[Bug 14781] A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function
bugzilla at busybox.net
bugzilla at busybox.net
Tue Jun 7 18:49:18 UTC 2022
https://bugs.busybox.net/show_bug.cgi?id=14781
--- Comment #4 from Natanael Copa <ncopa at alpinelinux.org> ---
simpler way to reproduce it:
echo "foo" | valgrind ./busybox_unstripped awk '$1$1=0'
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the busybox-cvs
mailing list