add bash-2018-07-msg00042

data_augmentation/methods/ConcFuzz/crash_tags.yaml

@@ -1,3 +1,4 @@
+bash-2018-07-msg00042: asan;1;braces.c:596
 libtiff_cve-2016-10094: asan;2;tools/tiff2pdf.c:2901
 lua_cve-2019-6706: asan;0;lapi.c:1294
 libjpeg_cve-2018-19664: asan;0;oracle_source/wrbmp.c:145

targets/bash-2018-07-msg00042/README.md

@@ -0,0 +1,17 @@
+# 2018-07-msg00042
+## references
+https://lists.gnu.org/archive/html/bug-bash/2018-07/msg00042.html
+## description
+
+In mkseq(), integer overflow detection is incomplete and it can be overflow.
+
+## patch
+https://git.savannah.gnu.org/cgit/bash.git/diff/braces.c?h=devel&id=96efdbb5b489a0f592671593e60fc4355477b7f1
+
+## fixed files
+
+braces.c	
+
+## Source of PoC
+
+https://lists.gnu.org/archive/html/bug-bash/2018-07/msg00042.html

targets/bash-2018-07-msg00042/build.sh

@@ -0,0 +1,30 @@
+#!/bin/bash
+
+. ${TARGET_ROOT}/config.sh
+
+if [ $# -lt 1 ]; then
+  echo "Usage: $0 <build dir name>" 1>&2
+  exit 1
+fi
+
+cd $TARGET_ROOT
+# Since there is no tag named 'bash-4.4.23' in git repo, follow from 'bash-5.0' tag.
+git clone --branch bash-5.0 --depth 2 https://git.savannah.gnu.org/git/bash.git  $1
+cd ${TARGET_ROOT}/$1
+git checkout 64447609994bfddeef1061948022c074093e9a9f
+
+TARGET_DEF_CFLAGS="${TARGET_DEF_CFLAGS-}"
+TARGET_DEF_CXXFLAGS="${TARGET_DEF_CXXFLAGS-}"
+
+ARGS=""
+for var in "${!TARGET_DEF_@}"; do
+  ARGS="${ARGS} ${var#TARGET_DEF_}=\"$(echo ${!var})\""
+done
+set -o xtrace
+echo ${ARGS}
+eval ./configure ${ARGS} --with-static-link --without-bash-malloc 
+eval make -j$(nproc)
+
+#set +e
+#./bash < ../poc1
+#./bash < ../poc2

targets/bash-2018-07-msg00042/config.sh

@@ -0,0 +1,5 @@
+#!/bin/bash
+set -u
+
+export RELPATH="bash"
+export ARGS=""

targets/bash-2018-07-msg00042/preinstall.sh

@@ -0,0 +1,4 @@
+#!/bin/bash
+
+apt-get update
+apt-get install -y --no-install-recommends build-essential bison autoconf autotools-dev

targets/bash-2018-07-msg00042/root_causes/locations

@@ -0,0 +1,2 @@
+braces.c:423
+braces.c:424