Comments (10)
Han0nly
commented on May 27, 2024
1
How did you find out, if I may ask?
Hi @gotson, We found this sample using a testing technique called fuzzing.
from junrar.
gotson
commented on May 27, 2024
1
Thanks, i manage to reproduce in the tests, will have a look.
from junrar.
gotson
commented on May 27, 2024
1
Hi @gotson , are you willing to help us to request a CVE ID through GitHub Security Advisories for this bug, which can cause Denial of Service. You can follow this tutorial to manage your bug fixing and alert any downstream dependencies of the issue so they can patch immediately if using the broken release. Thanks for your help!
Thanks, it's a new process to me, but that's actually a good idea.
from junrar.
gotson
commented on May 27, 2024
How did you find out, if I may ask?
from junrar.
gotson
commented on May 27, 2024
It doesn't seem the provided file is even a rar file, no ?
unrar t loop-913d3158487310b1b4b74086ab888f5ed56a8493 Thu Jan 27 11:36:52 2022
UNRAR 6.10 freeware Copyright (c) 1993-2022 Alexander Roshal
Corrupt header is found
Main archive header is corrupt
Testing archive loop-913d3158487310b1b4b74086ab888f5ed56a8493
Unexpected end of archive
No files to extract
from junrar.
Han0nly
commented on May 27, 2024
Hi @gotson , this infinite loop PoC file we provided here is indeed a broken RAR file. We use fuzzing to iteratively mutate some valid RAR files to test the junrar.
from junrar.
github-actions
commented on May 27, 2024
The release is available on:
v7.4.1- GitHub release
Your semantic-release bot
from junrar.
Han0nly
commented on May 27, 2024
Hi @gotson , are you willing to help us to request a CVE ID through GitHub Security Advisories for this bug, which can cause Denial of Service. You can follow this tutorial to manage your bug fixing and alert any downstream dependencies of the issue so they can patch immediately if using the broken release. Thanks for your help!
from junrar.
Han0nly
commented on May 27, 2024
Hi @gotson , I found some files which can also trigger this infinite loop. I have tested these on the latest version (7.5.0)
loops.zip.
from junrar.
gotson
commented on May 27, 2024
Hi @gotson , I found some files which can also trigger this infinite loop. I have tested these on the latest version (7.5.0) loops.zip.
Please open a new issue.
from junrar.
Related Issues (20)
- Get a specific inputstream from a rar containing multiple items. HOT 1
- Error unpacking large file(>2G) HOT 10
- Could the junrar project benefit from free security help?
- [BUG] Special characters are not recognized anymore HOT 8
- How to disable logging in System.err? HOT 2
- FileHeader times change depending on the current timezone HOT 9
- FileTime.fromMillis(getDateDos(fileTime)) is not working below android API 26 HOT 2
- Remove dependency from org.slf4j.LoggerFactory HOT 7
- CrcErrorException HOT 4
- [BUG] Compress HOT 1
- com.github.junrar.exception.CrcErrorException during extracting of archive HOT 2
- [BUG]A carefully crafted RAR archive can trigger an infinite loop while parsing HOT 21
- [BUG] NullPointerException when extracting solid archives HOT 6
- [BUG]com.github.junrar.exception.CorruptHeaderException: null HOT 2
- [BUG] Exception swallowed during initialization -- silently missing data we used to get in 7.4.1 HOT 11
- [BUG] "IllegalArgumentException: Pipe Size <= 0" with an empty file in the archive HOT 9
- Integration with Google oss-fuzz fuzzing service HOT 2
- Hrlp me HOT 1
- [BUG] Pom License link leads to 404 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from junrar.