Gwan Yeong Kim

Hello, thank you for the quick response. I received a CVE. CVE-2018-6799 Thanks.

Hello, thank you for the quick response. I have a question. 1) Do you think this is a security issue? (I want to avoid duplicate analysis.) 2) If this is a security issue, can I issue a CVE? Thanks.

I agree with you. Perhaps, in general, the user is not executing that command. I think this problem can be considered in terms of making the software stronger. Thanks.

Hello, I've found a similar issue. Can you check it out? Thanks. ==20888== Process terminating with default action of signal 8 (SIGFPE) ==20888== Integer divide by zero at address 0x10032566A8 ==20888== at 0x4C37C6: boundary3d (graph3d.c:406) ==20888== by 0x4C37C6: do_3dplot (graph3d.c:717) ==20888== by 0x5EC4C7: eval_3dplots (plot3d.c:2387) ==20888== by 0x4430D2: splot_command (command.c:2263) ==20888== by 0x4348A9: command (command.c:631) ==20888== by 0x4348A9: do_line (command.c:420) ==20888==...

Hello, I will reproduce this problem. Can you check again? I uploaded the docker file. Thanks. ==18165== Invalid write of size 1 ==18165== at 0x48324B6: strcpy (in /usr/lib/valgrind/vgpreload_memcheck-x86-linux.so) ==18165== by 0x1DD925: CANVAS_put_text (canvas.trm:1070) ==18165== by 0x1DED8C: ENHCANVAS_put_text (canvas.trm:1516) ==18165== by 0x1DEF93: ENHCANVAS_put_text (canvas.trm:1557) ==18165== by 0x1D881B: write_multiline (term.c:793) ==18165== by 0x11C077: do_key_sample (boundary.c:1164) ==18165==...

heap-buffer-overflow in f_strftime

Thank you for your reply. fuzzing is difficult to create valid inputs by entering random data. Happy New Year. :)

Hello, I tested it in revision 622 version. The problem is reproduced in the 622 version. The fuzz test should go on for a long time. And it requires a lot of resources. Thanks. My Steps to reproduce: 1. svn checkout https://svn.code.sf.net/p/astyle/code/trunk astyle-code 2. cd AStyle/build/clang && make 3. Download the .POC files. 4.Execute the following command : valgrind ./astyle $POC ==20311== Conditional jump or move depends on uninitialised value(s) ==20311== at 0x40BAA8: astyle::ASEncoding::utf8LengthFromUtf16(char...