h0n9xu

icon indicating an email [email protected]

icon location Shenzhen, Guangdong, China icon location Keep It Simple, Stupid!

Results 35 comments of h0n9xu

Multi-thread use case

@kud1ing and @fpoli Thanks so much for your help! I think I've to choose another approach.

AddressSanitizer: NPE read in multithreading mode

FYI, we collected *several other pocs* with different crashing backtraces [here](https://github.com/ntu-sec/pocs/tree/master/myhtml/caec858/crashes).

AddressSanitizer: NPE read in multithreading mode

@lexborisov my pleasure!

AddressSanitizer: NPE read in multithreading mode

Hi @lexborisov , I had a quick review of the source code, it seems to relevant with the data race on `queue->nodes_uses`, which subsequently affects the memory (re)allocation operations and...

AddressSanitizer: NPE read in multithreading mode

@lexborisov Great! Will try lexbor :ok_hand:

How to fuzz an executable with WinAFL?

Thanks, @ifratric ! I followed your suggestions and modified the `from_file.c` (add a function `myfunc` as the fuzzing entry, see below) and compiled it with x64 cl.exe for a 64bit...

How to fuzz an executable with WinAFL?

@ifratric Got it, thanks! Will follow your advice and try :smile:

FLIF aborted when reading some invalid png files

Another PoC which contains one byte: ![libpng_issue_1](https://user-images.githubusercontent.com/843267/41361935-d0333934-6f62-11e8-9a8e-b879ddf6aba5.png)

FLIF crash with specific image: heap-buffer-overflow

This seems a duplicate to #502, #506 or the root cause is somewhat relevant.

ERROR: AddressSanitizer: SEGV on unknown address 0x61f00002ec7c

The PoC file we found: [palette_C.hpp:130.txt](https://github.com/FLIF-hub/FLIF/files/2092439/palette_C.hpp.130.txt)