Headline
CVE-2022-27419: Stack-based Buffer Overflow in rtl_433 · Issue #2012 · merbanan/rtl_433
rtl_433 21.12 was discovered to contain a stack overflow in the function acurite_00275rm_decode at /devices/acurite.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.
./rtl_433 -d0 -H5 -H20 -f 433.70M -f 433.80M -f 433.90M POC1
SUMMARY: AddressSanitizer: stack-buffer-overflow /home/zxq/CVE_testing/ASAN-install/rtl_433/src/devices/acurite.c:1244 in acurite_00275rm_decode
Shadow bytes around the buggy address:
0x100003f00c10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x100003f00c20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x100003f00c30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x100003f00c40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x100003f00c50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
=>0x100003f00c60: 00 00 00 00 00 00 00 00 00 00 00[04]f3 f3 f3 f3
0x100003f00c70: f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3
0x100003f00c80: f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 f3 00 00 00 00
0x100003f00c90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x100003f00ca0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x100003f00cb0: 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 f2
Shadow byte legend (one shadow byte represents 8 application bytes):
Addressable: 00
Partially addressable: 01 02 03 04 05 06 07
Heap left redzone: fa
Freed heap region: fd
Stack left redzone: f1
Stack mid redzone: f2
Stack right redzone: f3
Stack after return: f5
Stack use after scope: f8
Global redzone: f9
Global init order: f6
Poisoned by user: f7
Container overflow: fc
Array cookie: ac
Intra object redzone: bb
ASan internal: fe
Left alloca redzone: ca
Right alloca redzone: cb
Shadow gap: cc
==3559329==ABORTING