From f306a028239c0c08fda27bf066ab58f4e48803b3 Mon Sep 17 00:00:00 2001 From: lllllq-four <2467137875@qq.com> Date: Thu, 16 Mar 2023 17:42:29 +0800 Subject: [PATCH] add demo/sectest/static_patch_scan/2022-09/OpenHarmony-SA-2022-0903.yara Signed-off-by: lllllq-four <2467137875@qq.com> --- .../2022-09/OpenHarmony-SA-2022-0903.yara | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 demo/sectest/static_patch_scan/2022-09/OpenHarmony-SA-2022-0903.yara diff --git a/demo/sectest/static_patch_scan/2022-09/OpenHarmony-SA-2022-0903.yara b/demo/sectest/static_patch_scan/2022-09/OpenHarmony-SA-2022-0903.yara new file mode 100644 index 000000000..f778cb3d5 --- /dev/null +++ b/demo/sectest/static_patch_scan/2022-09/OpenHarmony-SA-2022-0903.yara @@ -0,0 +1,35 @@ +/* + * Copyright (c) 2023 Huawei Device Co., Ltd. + * + * Licensed under the Apache License, Version 2.0 (the "License"); + * you may not use this file except in compliance with the License. + * You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the License is distributed on an "AS IS" BASIS, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the License for the specific language governing permissions and + * limitations under the License. + */ + +import "console" +import "elf" + +rule OpenHarmony_SA_2022_0903 +{ + meta: + date="2023-03-03" + openharmony_sa="OpenHarmony-SA-2022-0903" + cve="CVE-2023-0035" + affected_files="libsoftbus_server.z.so"//in 3.0.x,and "libdsoftbus_bus_center_server.z.so" in 3.0 + + strings: + + $fix="infoTypeLen is invalid, infoTypeLen = %d" + + condition: + $fix and console.log("OpenHarmony-SA-2022-0903 testcase pass") + } + -- GitLab