Re: heap-buffer-overflow in luaD

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: heap-buffer-overflow in luaD_pretailcall
From: Gé Weijers <ge@...>
Date: Tue, 7 Jul 2020 23:04:59 -0700

On Tue, Jul 7, 2020 at 9:42 PM William Ahern <william@25thandclement.com> wrote:
> You can build with AddressSanitizer like
>
>   make MYCFLAGS="-fsanitize=address" MYLDFLAGS="-fsanitize=address"
>
> but I can't reproduce on Ubuntu 20.04 LTS, neither with gcc (9.3.0) nor
> clang (10.0.0). It definitely would help to know more about the test
> environment.

I could reproduce it on Debian 10 by compiling for 32-bit code (you
have to install 32-bit glibc and some other libraries if you're
running a 64-bit kernel)
Pass -m32 to the compiler.

-- 
Gé

References:
- heap-buffer-overflow in luaD_pretailcall, Rui Zhong
- Re: heap-buffer-overflow in luaD_pretailcall, Roberto Ierusalimschy
- Re: heap-buffer-overflow in luaD_pretailcall, Gé Weijers
- Re: heap-buffer-overflow in luaD_pretailcall, Roberto Ierusalimschy
- Re: heap-buffer-overflow in luaD_pretailcall, William Ahern

Prev by Date: Re: heap-buffer-overflow in getobjname
Next by Date: Re: Stack overflow in luaO_pushvfstring
Previous by thread: Re: heap-buffer-overflow in luaD_pretailcall
Next by thread: Re: heap-buffer-overflow in luaD_pretailcall
Index(es):
- Date
- Thread