Skip to content

Add overflow check in bgzf_index_load_hfile() #1978

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
whitwham merged 1 commit into from
Dec 19, 2025
Merged

Add overflow check in bgzf_index_load_hfile() #1978

whitwham merged 1 commit into from
Dec 19, 2025

Conversation

@daviesrob
Copy link
Member

@daviesrob daviesrob commented Dec 18, 2025

This function reads an item count from the input file and uses it to allocate an array of file offsets. It's possible for this to overflow, resulting in an attempt to malloc(0) and, if that returns a valid pointer, an attempt to zero 16 bytes in a zero-length allocation.

Fix by checking that the allocation will not overflow.

Thanks to Harrison Green for reporting this.

@daviesrob
Add overflow check in bgzf_index_load_hfile()
26d3a1f 
This function reads an item count from the input file and uses
it to allocate an array of file offsets.  It's possible for
this to overflow, resulting in an attempt to malloc(0) and,
if that returns a valid pointer, an attempt to zero 16 bytes
in a zero-length allocation.

Fix by checking that the allocation will not overflow.

Thanks to Harrison Green for reporting this.
@whitwham whitwham merged commit 6dd0d7d into samtools:develop Dec 19, 2025
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@whitwham whitwham

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@daviesrob @whitwham