When we find an error in a yara file, exit instead of continuing to p…

…arse The yara parser can potentially overwrite heap buffers parsing invalid yara files. Exit on error to avoid this. These overwrites are only observed when running with address sanitization and mpool disabled.
Cisco-Talos · Feb 27, 2024 · 2192b9e · 2192b9e
1 parent 24226f7
commit 2192b9e
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/libclamav/yara_grammar.c b/libclamav/yara_grammar.c
@@ -3649,6 +3649,8 @@ YYSTYPE yylval YY_INITIAL_VALUE (= yyval_default);
       }
 # undef YYSYNTAX_ERROR
 #endif
+      /*Exit out, no reason to continue parsing, since we have already found errors.*/
+      goto yyreturn;
     }