New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
go/doc: runtime error: slice bounds out of range [:68] with length 67 #52353
Labels
Milestone
Comments
I have bisected it to 27b7b1f |
I have a fix, adding tests and pushing soon. |
Jorropo
added a commit
to Jorropo/go
that referenced
this issue
Apr 14, 2022
This code was trying to decode each codepoint one by one, but didn't resliced the string, so it was instead reading the first codepoint over and over, if the string length was not a multiple of the codepoint length, this would cause us to walk past the end of the string. This was a latent bug introduced in CL 397277 but was revealed to OSS-Fuzz in CL 384265. Fixes golang#52353
Change https://go.dev/cl/400240 mentions this issue: |
cc @rsc |
dmitshur
added
the
NeedsFix
The path to resolution is known, but the work has not been done.
label
Apr 14, 2022
Jorropo
added a commit
to Jorropo/go
that referenced
this issue
Apr 15, 2022
This code was trying to decode each codepoint one by one, but didn't resliced the string, so it was instead reading the first codepoint over and over, if the string length was not a multiple of the codepoint length, this would cause us to walk past the end of the string. This was a latent bug introduced in CL 397277 but was revealed to OSS-Fuzz in CL 384265. Fixes golang#52353
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Labels
What version of Go are you using (
go version
)?Does this issue reproduce with the latest release?
Yes
What operating system and processor architecture are you using (
go env
)?go env
OutputWhat did you do?
Run https://go.dev/play/p/IM9A4XRruug?v=gotip
Bug is only on dev branch, not in go 1.18
What did you expect to see?
The program finishing and printing somme dummy data
What did you see instead?
Found by https://github.com/catenacyber/ngolo-fuzzing on oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46647
The text was updated successfully, but these errors were encountered: