We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
When dumping file, and it fails and prompts you into writing to ./lost_found there is a stash smashing vulnerability.
./lost_found
It allocates 255 bytes on the stack for ans
char ans[255] = {0};
Then, without any bounds checking feeds user input into it.
printf("Do you want to dump this file into ./lost_found/? [Y/N] "); ret = scanf("%s", ans);
Under certain conditions, this can lead to an arbitrary code execution.
Vulnerable files: src/f2fs/dump.c
The text was updated successfully, but these errors were encountered:
No branches or pull requests
When dumping file, and it fails and prompts you into writing to
./lost_foundthere is a stash smashing vulnerability.It allocates 255 bytes on the stack for ans
Then, without any bounds checking feeds user input into it.
Under certain conditions, this can lead to an arbitrary code execution.
Vulnerable files:
src/f2fs/dump.c
The text was updated successfully, but these errors were encountered: