Heap buffer underflow in find_argv_from_env

When running one of our applications that uses setproctitle under clang ASAN, it detected a heap buffer underflow in [find_argv_from_env](https://github.com/dvarrazzo/py-setproctitle/blob/e174a1566c8f33c8f9a7d819967f1264026859fd/src/spt_setup.c#L125).

[This gist](https://gist.github.com/itamaro/bca973ae5cb962dec3a9704d0feea656) (and [this godbolt](https://godbolt.org/z/sd64YYe6r)) demonstrate the issue using a minimal test program that copies `find_argv_from_env` with minor modifications to build standalone.

when running with one arg (e.g. `./test 1`) it fires on [`if (*ptr) ...`](https://gist.github.com/itamaro/bca973ae5cb962dec3a9704d0feea656#file-test-cpp-L43), and when running with no args (e.g. `./test`) it fires on [`if (strcmp(ptr, arg0)) ...`](https://gist.github.com/itamaro/bca973ae5cb962dec3a9704d0feea656#file-test-cpp-L70).

The gist includes the full output from both runs.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Heap buffer underflow in find_argv_from_env #131

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Heap buffer underflow in find_argv_from_env #131

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions