[Ming-cvs] [libming/libming] eda5a2: Fix null-pointer dereference issue in stackswap.

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

  Branch: refs/heads/master
  Home:   https://github.com/libming/libming
  Commit: eda5a20206862a11805303cdd125566c9f9f9103
      https://github.com/libming/libming/commit/eda5a20206862a11805303cdd125566c9f9f9103
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2017-10-23 (Mon, 23 Oct 2017)

  Changed paths:
    M NEWS
    M util/decompile.c

  Log Message:
  -----------
  Fix null-pointer dereference issue in stackswap.

Avoid processing stackswap when stack only contains one element. In this
case, print a warning if debug mode is enabled, and return cleanly.

This commit fixes CVE-2017-11733 (fixes #78).

  Commit: d468907a46a7ca42a78b0ac6f221172905be2fd6
      https://github.com/libming/libming/commit/d468907a46a7ca42a78b0ac6f221172905be2fd6
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2017-10-27 (Fri, 27 Oct 2017)

  Changed paths:
    M NEWS
    M util/read.c
    M util/read.h

  Log Message:
  -----------
  Fix readSInt16, readUInt16 and readSInt32 methods

* Rewrite readSInt16, readUInt16 and readSInt32.

    Avoid calling all read{U,S}Int8(f) in one line, order of
    evaluation is not guaranteed in the C standard (undefined
    behavior).

* Change return type of readUInt16 from int to unsigned int.

* Rewrite readUInt32.

    Use |= operator instead of adding four separate integers. Less
    memory usage, better readable.

  Commit: 8b29e8e7b321bbe102b3d543a7a5f20227371612
      https://github.com/libming/libming/commit/8b29e8e7b321bbe102b3d543a7a5f20227371612
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2017-10-27 (Fri, 27 Oct 2017)

  Changed paths:
    M NEWS
    M util/decompile.c

  Log Message:
  -----------
  Un-define DEBUGSTACK (util/decompile.c)

pop(), peek() and co. are designed to crash whenever the stack becomes
NULL but this behavior is currently short-circuited by the DEBUGSTACK
option, a debug option which allows further processing when Stack == NULL.

With DEBUGSTACK defined, whenever the stack becomes NULL it is replaced
by a dummy element like "// *** pop(): INTERNAL STACK ERROR FOUND ***".

While this is an acceptable feature for debugging purposes, this is not
something we want for production because it may lead other functions to
crash (infinite loops, buffer over reads...) in an especially undebuggabble
way.

  Commit: fcb9fbf96a96026fb656cebec53375a6dc94e8ad
      https://github.com/libming/libming/commit/fcb9fbf96a96026fb656cebec53375a6dc94e8ad
  Author: Sandro Santilli <st...@kb...>
  Date:   2017-10-29 (Sun, 29 Oct 2017)

  Changed paths:
    M NEWS
    M util/decompile.c
    M util/read.c
    M util/read.h

  Log Message:
  -----------
  Merge pull request #93 from hlef/master

Fix various issues related to CVE-2017-11733.

Compare: https://github.com/libming/libming/compare/847b98979405...fcb9fbf96a96