New submission from Kamil Frankowicz: After some fuzz testing I found a crashing test case.
Version: 2.7.13 compiled from source with Clang 3.9.1. To reproduce: python python_hoobr_tok_nextc.py Extract from Valgrind log (full log file at https://gist.github.com/fumfel/f9780e567dec761f8524523fff040742): ==15583== Process terminating with default action of signal 11 (SIGSEGV) ==15583== Bad permissions for mapped region at address 0x5F36000 ==15583== at 0x41EBC4: tok_nextc (tokenizer.c:861) ==15583== by 0x41ABA2: tok_get (tokenizer.c:1568) ==15583== by 0x41ABA2: PyTokenizer_Get (tokenizer.c:1681) ==15583== by 0x4171D4: parsetok (parsetok.c:159) ==15583== by 0x417DC0: PyParser_ParseFileFlagsEx (parsetok.c:106) ==15583== by 0x5C4A1D: PyParser_ASTFromFile (pythonrun.c:1499) ==15583== by 0x5C4C28: PyRun_FileExFlags (pythonrun.c:1354) ==15583== by 0x5C4009: PyRun_SimpleFileExFlags (pythonrun.c:948) ==15583== by 0x5C34AA: PyRun_AnyFileExFlags (pythonrun.c:752) ==15583== by 0x416478: Py_Main (main.c:640) ==15583== by 0x578782F: (below main) (libc-start.c:291) ---------- components: Interpreter Core files: python_hoobr_tok_nextc.py messages: 289078 nosy: Kamil Frankowicz priority: normal severity: normal status: open title: Heap out of bounds read in tok_nextc() type: crash versions: Python 2.7 Added file: http://bugs.python.org/file46704/python_hoobr_tok_nextc.py _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue29732> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
