[Bug 14781] A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function

bugzilla at busybox.net bugzilla at busybox.net
Tue Jun 7 18:49:18 UTC 2022


https://bugs.busybox.net/show_bug.cgi?id=14781

--- Comment #4 from Natanael Copa <ncopa at alpinelinux.org> ---
simpler way to reproduce it:

echo "foo" | valgrind ./busybox_unstripped awk '$1$1=0'

-- 
You are receiving this mail because:
You are on the CC list for the bug.


More information about the busybox-cvs mailing list