TA-Lib Out-of-Bounds Write Vulnerability in Regression Test Tool
Vulnerability
A critical out-of-bounds write vulnerability has been identified in TA-Lib versions through 0.6.4. This issue arises in the regression test tool component, specifically within the 'ta_regtest' file 'test_minmax.c'. The vulnerability is caused by an incorrect calculation of array lengths, which leads to memory being accessed and written beyond the allocated bounds. This flaw can be exploited locally, potentially causing a program crash or unauthorized memory access.
Impact
Exploitation of this vulnerability leads to a global buffer overflow, allowing for memory corruption that could be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the application.
Reproduction
The vulnerability can be reproduced by running the TA-Lib regression test tool 'ta_regtest' with the 'test_minmax' function. The 'setInputBuffer' function will process input data that triggers the out-of-bounds write, which can be verified using AddressSanitizer, a memory error detection tool.
Remediation
Users are advised to update to TA-Lib version 0.6.4 or later, where this vulnerability has been fixed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.