[Ming-cvs] [libming/libming] f42fdb: Fix heap-use-after-free in decompileIF

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

  Branch: refs/heads/master
  Home:   https://github.com/libming/libming
  Commit: f42fdb48986f29278907ab11f615b1c5d2f87530
      https://github.com/libming/libming/commit/f42fdb48986f29278907ab11f615b1c5d2f87530
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2018-02-19 (Mon, 19 Feb 2018)

  Changed paths:
    M NEWS
    M util/decompile.c

  Log Message:
  -----------
  Fix heap-use-after-free in decompileIF

The decompileIF function in util/decompile.c accesses actions
array without checking the validity of n, the user entered index.
This leads to heap-use-after-free issues when n is zero.

This commit addresses this issue by using the OpCode function
which does check input arguments.

This commit fixes #105 (CVE-2018-6359).

  Commit: 9c53bf8e165c3a74e20f4c93b4ab6c05fe67f187
      https://github.com/libming/libming/commit/9c53bf8e165c3a74e20f4c93b4ab6c05fe67f187
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2018-02-19 (Mon, 19 Feb 2018)

  Changed paths:
    M NEWS
    M util/decompile.c

  Log Message:
  -----------
  Use OpCode instead of directly accessing actions

Instead of directly accessing the actions array without checks
for the value of n (which may lead to heap buffer overflow etc,
see #83 or #105), use the dedicated OpCode function.

  Commit: dacce30cc0950b0b01ee4fc8299130999708745a
      https://github.com/libming/libming/commit/dacce30cc0950b0b01ee4fc8299130999708745a
  Author: Sandro Santilli <st...@kb...>
  Date:   2018-02-20 (Tue, 20 Feb 2018)

  Changed paths:
    M NEWS
    M util/decompile.c

  Log Message:
  -----------
  Merge pull request #108 from hlef/master

Use OpCode instead of directly accessing actions

Compare: https://github.com/libming/libming/compare/3120f1cdae0c...dacce30cc095