Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VersionReq may panic .Found by afl.rs #227

Closed
StevenJiang1110 opened this issue Jan 9, 2021 · 1 comment
Closed

VersionReq may panic .Found by afl.rs #227

StevenJiang1110 opened this issue Jan 9, 2021 · 1 comment

Comments

@StevenJiang1110
Copy link

I've using afl.rs to fuzz this crate. And I found a panic issue in VersionReq. The code to replay the issue is

let _ = semver::VersionReq::parse("80000000000000000000");

And from the panic reportn, it seems that this panic is caused by use unwrap on a Result which may return err.
截屏2021-01-09 下午9 56 44
I hope you can check if this is a bug need to be fixed. Thanks a lot.
@dtolnay
Copy link
Owner

dtolnay commented May 25, 2021

Thanks — this is fixed in 1.0.0 and I've put fuzz target for parsing into the repo.

@dtolnay dtolnay closed this as completed May 25, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dtolnay @StevenJiang1110