Search found 2 matches
- Thu Sep 14, 2023 1:38 pm
- Forum: Closed Bugs [GZDoom]
- Topic: [4.10.0/3.88b] Buffer Overflow Vulnerability
- Replies: 3
- Views: 1379
Re: [4.10.0/3.88b] Buffer Overflow Vulnerability
Okay, cool.
- Thu May 11, 2023 11:58 am
- Forum: Closed Bugs [GZDoom]
- Topic: [4.10.0/3.88b] Buffer Overflow Vulnerability
- Replies: 3
- Views: 1379
[4.10.0/3.88b] Buffer Overflow Vulnerability
So i was testing gzdoom and it seems there is a buffer overflow vulnerability in a IMGZImage_TryCreate function. When it reads a magic number IMGZ, the read function checks if variables FilePos (which is wad's directory pointer to the start of the lump's data) + len (which is 4, size of magic number ...