YAML Metadata Warning:empty or missing yaml metadata in repo card
Check out the documentation for more information.
PoC: Stack Buffer Overflow in find_replace() โ pjreddie/darknet
Vulnerability
find_replace() in src/utils.c:221 uses sprintf(buffer, "%s", str) to copy an input string into a fixed char buffer[4096] on the stack. When the input string exceeds 4096 bytes, a stack buffer overflow occurs. This function is called with user-controlled file paths from .list training data files.
Files
poc_sprintf_overflow.cโ Standalone harness demonstrating the overflow with the exact vulnerable function fromsrc/utils.c:216-230
Reproduction
gcc -fsanitize=address -fno-omit-frame-pointer -O0 -g poc_sprintf_overflow.c -o poc_sprintf
./poc_sprintf
Result: AddressSanitizer: stack-buffer-overflow in find_replace
CWE
- CWE-121 (Stack-based Buffer Overflow)
- CWE-120 (Buffer Copy without Checking Size of Input)
Inference Providers NEW
This model isn't deployed by any Inference Provider. ๐ Ask for provider support