Bug 726779 – Invalid read parsing raw data as HTML

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 726779 - Invalid read parsing raw data as HTML


Summary:	Invalid read parsing raw data as HTML


Status:	RESOLVED DUPLICATE of bug 758605

Product:	libxml2
Classification:	Platform
Component:	htmlparser
Version:	git master
Hardware:	Other Linux

Importance:	Normal major
Target Milestone:	---
Assigned To:	Daniel Veillard
QA Contact:	libxml QA maintainers

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2014-03-20 14:57 UTC by xademax
Modified:	2017-06-17 11:03 UTC

See Also:
GNOME target:	---
GNOME version:	---

Description xademax 2014-03-20 14:57:15 UTC

I noticed some invalid read while parsing raw data (an SWF in this example) in HTML mode.

I'm using libxml2-2.9.1.
There is everything in the attachment to reproduce the bug :
- C code based on parse3.c example
- SWF file that caused the bug
- A valgrind log for help

I suspect a bug in htmlParseNameComplex() (HTMLparser.c:2488)
I tried to replace line 2514 "NEXTL(l);" by "NEXTL(len);l=0;" and the invalid are gone but not sure at all of what i did ...

I hope this helps ...

adema

Comment 1 xademax 2014-03-20 15:04:11 UTC

The attachment it too big the bugtracker, here it is : http://goo.gl/DA3MFk

Comment 2 Nick Wellnhofer 2017-06-17 11:03:30 UTC


*** This bug has been marked as a duplicate of bug 758605 ***