Closed Bug 1247500 Opened 8 years ago Closed 8 years ago

ASan: use-after-poison (write) in [@sec_asn1d_parse_leaf]

Categories

(NSS :: Libraries, defect)

Product:
NSS
Component:
Libraries
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

(firefox47 affected)

Status:
RESOLVED DUPLICATE of bug 1245528
Tracking Flags:
Tracking Status
firefox47 --- affected

People

(Reporter: tsmith, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: csectype-uaf, testcase)

Attachments

(2 files)

call_stack.txt
3.34 KB, text/plain
Details
test_case.der
22 bytes, application/x-x509-ca-cert
Details
Attached file call_stack.txt 
Using the .c file from bug 1245528 and the data in the attached test case this bug can be triggered.

This maybe a dup of 1245528.
Attached file test_case.der 

    
    

    
  
Yeah, it's the same as Bug 1245528

    
  
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → DUPLICATE

    
    

    
  
(We've also picked up a few other variants of this at Google, but they're the same root cause)

    
    

    
  
Thanks Ryan!
Group: crypto-core-security

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: