[Bug 38949] Free Falcon 5.x/6.x configuration editor segfaults on start (loader must take invalid IMAGE_LOAD_CONFIG_DIRECTORY values into account)

19 Jul 2015


      https://bugs.winehq.org/show_bug.cgi?id=38949
--- Comment #3 from André H. nerv@dawncrow.de ---
(In reply to Sebastian Lackner from comment #2)
...
(In reply to Anastasius Focht from comment #1)
...
The content of some PE image directories is invalid before the UPX
decompressor stub is run.
You must take this possibility into account before trying to access these
data structures.
Validating if the SecurityCookie is inside of the module should fix this,
however I wonder if this is really a complete fix. Do we theoretically also
need relocation of the SecurityCookie pointer?
Checking if the pointer is sane is one thing, but what about the decompressed
exe, it also needs a random cookie value...
-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

[Bug 38949] Free Falcon 5.x/6.x configuration editor segfaults on start (loader must take invalid IMAGE_LOAD_CONFIG_DIRECTORY values into account)