From: Kostya Serebryany <kcc@google.com>
Date: Sat, 1 Oct 2016 07:13:25 +0000 (+0000)
Subject: [libFuzzer] fix a recent bugs (buffer overflow)
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=1acd70c658c436f6cb8709a290ccc138859b1110;p=llvm

[libFuzzer] fix a recent bugs (buffer overflow)

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@283021 91177308-0d34-0410-b5e6-96231b3b80d8
---

diff --git a/lib/Fuzzer/FuzzerTracePC.cpp b/lib/Fuzzer/FuzzerTracePC.cpp
index f02b71dc9de..07e3264f720 100644
--- a/lib/Fuzzer/FuzzerTracePC.cpp
+++ b/lib/Fuzzer/FuzzerTracePC.cpp
@@ -92,7 +92,7 @@ bool TracePC::FinalizeTrace(size_t InputSize) {
         else if (Counter >= 2) Bit = 1;
         size_t Feature = i * 8 + Bit;
         CounterMap.AddValue(Feature);
-        uint32_t *SizePtr = &InputSizesPerFeature[Feature];
+        uint32_t *SizePtr = &InputSizesPerFeature[Feature % kFeatureSetSize];
         if (!*SizePtr || *SizePtr > InputSize) {
           *SizePtr = InputSize;
           Res = true;