ExternalVendorCode/AFLplusplus
1
0
Fork 0
mirror of https://github.com/AFLplusplus/AFLplusplus.git synced 2025-06-15 11:28:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix qemu/unicorn oob

Browse Source
This commit is contained in:
vanhauser-thc
2021-12-13 15:45:41 +01:00
parent 630272bac5
commit 57bc3c0701
2 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/Changelog.md
View File

@ -34,6 +34,8 @@ sending a mail to <afl-users+subscribe@googlegroups.com>.
- better banner - better banner
- more effective cmplog mode - more effective cmplog mode
- more often update the UI when in input2stage mode - more often update the UI when in input2stage mode
- qemu_mode/unicorn_mode: fixed OOB write when using libcompcov,
thanks to kotee4ko for reporting!
- frida_mode: - frida_mode:
- better performance, bug fixes - better performance, bug fixes
- David Carlier added Android support :) - David Carlier added Android support :)

3
src/afl-sharedmem.c
View File

@ -242,6 +242,9 @@ u8 *afl_shm_init(sharedmem_t *shm, size_t map_size,
#else #else
u8 *shm_str; u8 *shm_str;
// handle qemu/unicorn compcov map overwrite
if (map_size == MAP_SIZE) { map_size += 8; }
shm->shm_id = shm->shm_id =
shmget(IPC_PRIVATE, map_size, IPC_CREAT | IPC_EXCL | DEFAULT_PERMISSION); shmget(IPC_PRIVATE, map_size, IPC_CREAT | IPC_EXCL | DEFAULT_PERMISSION);
if (shm->shm_id < 0) { if (shm->shm_id < 0) {