Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2016-8859 (attacker controlled integer overflow in tre_tnfa_run_parallel()) #45

Open
lfam opened this issue Oct 23, 2016 · 2 comments
Open

CVE-2016-8859 (attacker controlled integer overflow in tre_tnfa_run_parallel()) #45

lfam opened this issue Oct 23, 2016 · 2 comments

Comments

@lfam
Copy link

lfam commented Oct 23, 2016

CVE-2016-8859 was assigned for an integer overflow in musl and, apparently, TRE that can potentially allow an attacker to achieve controlled heap corruption:

http://seclists.org/oss-sec/2016/q4/183

The reporter pointed out the fix applied in musl:

http://git.musl-libc.org/cgit/musl/commit/?id=c3edc06d1e1360f3570db9155d6b318ae0d0f0f7
@achivetta
Copy link

I think #37 also covers some of the same issues.

@anarcat anarcat mentioned this issue Oct 26, 2016
Closed
@anarcat
Copy link

anarcat commented Oct 26, 2016

in #37, only https://bugs.chromium.org/p/project-zero/issues/detail?id=429&can=1&q=TRE&redir=1 is relevant to here, the other two issues are different, undocumented, security issues.

@MichaelChirico MichaelChirico mentioned this issue May 19, 2020
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@achivetta @anarcat @lfam