Re: [sleuthkit-developers] NTFS Compression bug solution
Brought to you by:
carrier
Menu
▾
▴
Re: [sleuthkit-developers] NTFS Compression bug solution
|
From: Brian C. <ca...@sl...> - 2006-11-29 21:28:35
|
On Nov 29, 2006, at 2:28 AM, David Collett wrote: > Hi Brian, > I think I have tracked this down to the loop on line 1051 in ntfs.c. > There is no bounds checking, and in my problem case it overflows the > comp->uncomp_buf buffer. It does not abort immediately, but rather > when > uncomp_buf is free'd, presumably because we have trashed malloc's > metadata which I believe lives after the malloc'd buffer. > > Adding a check fixes this for me. Interesting. I previously added that check and added some more checks, but the result was that it would get into an infinite loop somewhere. I'll recheck the other changes that I made to see if those are incorrect and causing the infinite loop problem. thanks, brian |
