Out of bounds heap in HFS+ module
Brought to you by:
carrier
Regarding sleuthkit 4.2.0
hfs_load_extended_attrs() hfs.c When called from hfs_make_catalog() attributeLength is not sanity check, so attributeLength got a very large number will result in a heap overflow of memcpy(buffer, attrData->attr_data, attributeLength);
To reproduce, uncompress the attached image and run "fls 58"