invalid left shift in xmltok_impl.c and xmltok.c

Fast XML parser library in C

Brought to you by: fdrake, hartwork, kwaclaw

This project can now be found here.

#529 invalid left shift in xmltok_impl.c and xmltok.c

Milestone: Feature Request

Status: closed-fixed

Owner: Sebastian Pipping

Labels: None

Priority: 5

Updated: 2017-09-03

Created: 2015-07-30

Creator: Dingbao Xie

Private: No

After running afl-fuzzer on expat for one night, I found a bunch of invalid shift xmltok_impl.c and xmltok.c.
To reproduce them, first build the source code with flag '-fsanitize=undefined' then compile the example code 'element.c'.
At last, execute command './element <$file', you will see a bunch of invalid shift.
Attached are the malformed input xml files.

1 Attachments

malformed_xml.zip

Discussion

Sebastian Pipping - 2017-09-03

status: open --> closed-fixed

assigned_to: Sebastian Pipping
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Sebastian Pipping - 2017-09-03

Fixed since 2.2.0, commit https://github.com/libexpat/libexpat/commit/2106ee4050fd0d30e776e1c5a48937bb76a17074 , closing.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

invalid left shift in xmltok_impl.c and xmltok.c

Fast XML parser library in C

Group

Searches

Help

#529 invalid left shift in xmltok_impl.c and xmltok.c

Discussion