[Rpm-maint] [rpm-software-management/rpm] invalid memory read in function providePackageNVR / doFind (#136)

[Hanno Böck]

This file causes a read access to an invalid memory area.

[rpm-invalid-read-doFind-providePackageNVR.zip](https://github.com/rpm-software-management/rpm/files/736804/rpm-invalid-read-doFind-providePackageNVR.zip)

asan error:
```
==10120==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x000000444fe0 bp 0x7ffc6b5de6d0 sp 0x7ffc6b5dde40 T0)
==10120==The signal is caused by a READ memory access.
==10120==Hint: address points to the zero page.
    #0 0x444fdf in __interceptor_strcmp.part.26 (/r/rpm/rpm+0x444fdf)
    #1 0x53d4d4 in doFind /f/rpm/rpm/lib/rpmds.c:830:15
    #2 0x5cbc79 in providePackageNVR /f/rpm/rpm/lib/headerutil.c:362:9
    #3 0x5cbc79 in legacyRetrofit /f/rpm/rpm/lib/headerutil.c:391
    #4 0x5cbc79 in headerConvert /f/rpm/rpm/lib/headerutil.c:410
    #5 0x6378a7 in rpmpkgRead /f/rpm/rpm/lib/package.c:403:6
    #6 0x6378a7 in rpmReadPackageFile /f/rpm/rpm/lib/package.c:432
    #7 0x579658 in tryReadHeader /f/rpm/rpm/lib/rpminstall.c:353:17
    #8 0x579658 in rpmInstall /f/rpm/rpm/lib/rpminstall.c:537
    #9 0x5057ae in main /f/rpm/rpm/rpmqv.c:295:12
    #10 0x7fc1d8fc478f in __libc_start_main (/lib64/libc.so.6+0x2078f)
    #11 0x41c648 in _start (/r/rpm/rpm+0x41c648)


-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/136
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20170128/556c3151/attachment.html>