[Nasm-bugs] [Bug 3392775] New: uninitialized value use
noreply-nasm at dev.nasm.us
noreply-nasm at dev.nasm.us
Tue Aug 10 14:08:20 PDT 2021
https://bugzilla.nasm.us/show_bug.cgi?id=3392775
Bug ID: 3392775
Summary: uninitialized value use
Product: NASM
Version: 2.16 (development)
Hardware: All
OS: All
Status: OPEN
Severity: normal
Priority: Medium
Component: Assembler
Assignee: nobody at nasm.us
Reporter: xiaobaozidi at gmail.com
CC: chang.seok.bae at intel.com, gorcunov at gmail.com,
hpa at zytor.com, nasm-bugs at nasm.us
Obtained from: Built from git using configure
Created attachment 411822
--> https://bugzilla.nasm.us/attachment.cgi?id=411822&action=edit
Here is the testcase crash the program
Found by Andrew Bao with his UninitFuzzer
Here is the msan report:
./nasm -f bin
fuzz_out/crashes/id\:000000\,sig\:06\,src\:000799\,op\:arith8\,pos\:3\,val\:-3
-o ./tmp
fuzz_out/crashes/id:000000,sig:06,src:000799,op:arith8,pos:3,val:-3:1: error:
comma, colon, decorator or end of line expected after operand
fuzz_out/crashes/id:000000,sig:06,src:000799,op:arith8,pos:3,val:-3:1: error:
invalid decorator
==3163==WARNING: MemorySanitizer: use-of-uninitialized-value
#0 0x5176f5 in parse_line
/home/baod/software_testing/software_test/nasm/asm/parser.c:1266:13
#1 0x4a1ab2 in assemble_file
/home/baod/software_testing/software_test/nasm/asm/nasm.c:1735:13
#2 0x4a1ab2 in main
/home/baod/software_testing/software_test/nasm/asm/nasm.c:717:9
#3 0x7f25ab942bf6 in __libc_start_main
/build/glibc-S9d2JN/glibc-2.27/csu/../csu/libc-start.c:310
#4 0x41c139 in _start
(/home/baod/software_testing/software_test/nasm/nasm+0x41c139)
Uninitialized value was created by an allocation of 'output_ins.i' in the
stack frame of function 'main'
#0 0x49c790 in main
/home/baod/software_testing/software_test/nasm/asm/nasm.c:519
SUMMARY: MemorySanitizer: use-of-uninitialized-value
/home/baod/software_testing/software_test/nasm/asm/parser.c:1266:13 in
parse_line
Exiting
--
You are receiving this mail because:
You are on the CC list for the bug.
You are watching all bug changes.
More information about the Nasm-bugs
mailing list