Pull Request Updated #github


espeak-ng@groups.io Integration <espeak-ng@...>
 

[espeak-ng/espeak-ng] Pull request updated by catenacyber:

#934 Oss-fuzz integration

cf https://github.com/google/oss-fuzz/pull/5543

  • fix a buffer overflow in ucd_tolower leading to failure when compiling with address sanitizer
  • force the use of C++ compiler for espeak-ng
  • adding a malloc to have a null-terminated string in the fuzz target
  • setting (but not overwriting) ESPEAK_DATA_PATH environment variable inside the fuzz target


espeak-ng@groups.io Integration <espeak-ng@...>
 

[espeak-ng/espeak-ng] Pull request updated by catenacyber:

#934 Oss-fuzz integration

cf https://github.com/google/oss-fuzz/pull/5543

  • fix a buffer overflow in ucd_tolower leading to failure when compiling with address sanitizer
  • force the use of C++ compiler for espeak-ng
  • adding a malloc to have a null-terminated string in the fuzz target
  • setting (but not overwriting) ESPEAK_DATA_PATH environment variable inside the fuzz target


espeak-ng@groups.io Integration <espeak-ng@...>
 

[espeak-ng/espeak-ng] Pull request updated by CMB:

#932 Memory Access Fixes

  • Fix buffer size calculation when initializing output.
  • Fix out-of-bounds read when processing malformed SSML.

These issues were found with valgrind. I am not very confident in the fix for SSML parsing. It does work, but it needs careful review please.