tbeu matio Heap-Based Buffer Overflow Vulnerability in Version 1.5.28

A critical heap-based buffer overflow vulnerability has been identified in tbeu matio version 1.5.28. This issue occurs in the Mat_VarPrint function within the file src/mat.c. The vulnerability allows for out-of-bounds read operations, which can lead to application crashes. The issue can be exploited remotely, without requiring authentication, but does necessitate some form of user interaction.

Impact

Exploitation of this vulnerability causes a heap-based buffer overflow, leading to out-of-bounds read operations. Such heap-overflow conditions can typically be exploited to execute arbitrary code or cause a denial-of-service by crashing the application.

Reproduction

The vulnerability can be reproduced by building the matio library with specific compiler flags that enable fuzzing and address sanitization. After compiling the library, a fuzzer can be used to test the Mat_VarPrint function with crafted input files that trigger the buffer overflow. This process involves using the LLVM Fuzzer framework, which is integrated into the fuzzing workflow.

Remediation

Users are advised to update to the latest version of tbeu matio, as the vulnerability has been addressed in version 1.5.29.