[2.2.10rc1] Console corruption with color codes
Stacking an amount of color codes corrupts the console in such a way that after an amount of time, after making any text appear in the console input, or instantly, will cause the game to crash.
COLORCRASH.wad - This mod adds two commands:
poison <lines> <length>
- Will print lines
lines of length length
over time (1 line per frame).
The lines being printed consist of \131
, a number, and \128
, repeated by length
times.
garbage
- Will print a 255 byte string, consisting of a random uppercase letter on odd bytes and a color code on even bytes.
From game start,
poison 100 35
corrupts the input after a few moments. Pressing enter doesn't cause the game to crash.
poison 1 48
is enough to prime the console to crash on any input.
garbage
crashes the game instantly if the console is open.
Crash after poison 1 48 and pressing a key
-------------------
Error occurred on Thursday, January 6, 2022 at 23:11:50.
srb2win.exe caused an Access Violation at location 7592915A in module msvcrt.dll Writing to location B9A29A74.
Registers:
eax=079f4dc3 ebx=83803383 ecx=00d26c00 edx=00000003 esi=04559dc0 edi=b9a29a74
eip=7592915a esp=0569fbc0 ebp=0569fbc8 iopl=0 nv up ei pl nz ac pe nc
cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00210212
AddrPC Params
7592915A B9A29A74 04559DC0 0349B003 msvcrt.dll!memmove
0048BCC6 060803F0 5FFB9F2B 000EAAFD srb2win.exe!CON_InputDelSelection
0048D1B3 009E99E4 060803F0 5DA23F85 srb2win.exe!CON_Ready
0048E44D 5DB2D510 0569FD68 5DAFD594 srb2win.exe!CON_Responder
5DA23F85 060803F0 0040E600 060803F0 SDL2.dll!0x3f85
5DAFD594 0569FDA8 5DAFE3A8 0569FD88 SDL2.dll!SDL_DYNAPI_entry
00442C61 0569FD88 75A906C0 0EA43708 srb2win.exe!TryRunTics
5DAFE3A8 00000000 40D3E600 00004F98 SDL2.dll!SDL_DYNAPI_entry
004036EF 00000001 00000000 07FA53C0 srb2win.exe!I_GetTime
0043726E 060803F0 0072A7E3 0569FE14 srb2win.exe!D_SRB2Loop
0048DF9A 00000000 00000000 00000000 srb2win.exe!CONS_Printf
srb2win.exe 2.2.10.0
ntdll.dll 6.3.19041.1288
KERNEL32.DLL 6.3.19041.1348
KERNELBASE.dll 6.3.19041.1348
ADVAPI32.dll 6.3.19041.1052
msvcrt.dll 7.0.19041.546
sechost.dll 6.3.19041.906
RPCRT4.dll 6.3.19041.1288
WS2_32.dll 6.3.19041.546
libcurl.dll 7.69.0.0
CRYPT32.dll 6.3.19041.1320
ucrtbase.dll 6.3.19041.789
wldap32.dll 6.3.19041.546
libgme.dll
USER32.dll 6.3.19041.1348
win32u.dll 6.3.19041.1320
GDI32.dll 6.3.19041.1202
gdi32full.dll 6.3.19041.1320
msvcp_win.dll 6.3.19041.789
libopenmpt.dll 1.0.0.0
SDL2.dll 2.0.10.0
IMM32.DLL 6.3.19041.546
ole32.dll 6.3.19041.1202
combase.dll 6.3.19041.1348
OLEAUT32.dll 6.3.19041.985
SETUPAPI.dll 6.3.19041.1237
cfgmgr32.dll 6.3.19041.1151
bcrypt.dll 6.3.19041.1023
SHELL32.dll 6.3.19041.1320
SDL2_mixer_ext.dll 2.1.0.0
libgcc_s_sjlj-1.dll
WINMM.DLL 6.3.19041.546
VERSION.dll 6.3.19041.546
libfluidsynth-2.dll
libstdc++-6.dll
DSOUND.dll 6.3.19041.1
powrprof.dll 6.3.19041.546
winmmbase.dll 6.3.19041.1
UMPDC.dll
uxtheme.dll 6.3.19041.1266
MSCTF.dll 6.3.19041.1202
exchndl.dll 0.9.0.0
PSAPI.DLL 6.3.19041.546
mgwhelp.dll 0.9.0.0
dbghelp.dll 6.3.19041.1052
dbgcore.DLL 6.3.19041.546
SHCORE.DLL 6.3.19041.1320
kernel.appcore.dll 6.3.19041.546
bcryptPrimitives.dll 6.3.19041.1348
clbcatq.dll 2001.12.10941.16384
textinputframework.dll 6.3.19041.1320
CoreUIComponents.dll 6.3.19041.546
CoreMessaging.dll 6.3.19041.867
ntmarta.dll 6.3.19041.546
wintypes.dll 6.3.19041.1348
D3D9.DLL 6.3.19041.928
dwmapi.dll 6.3.19041.746
windows.storage.dll 6.3.19041.1320
Wldp.dll 6.3.19041.1320
igdumdx32.dll 8.15.10.2900
igdumd32.dll 8.15.10.2900
dinput8.dll 6.3.19041.1
HID.DLL 6.3.19041.546
inputhost.dll 6.3.19041.906
PROPSYS.dll 7.0.19041.1023
DEVOBJ.dll 6.3.19041.1151
WINTRUST.dll 6.3.19041.1266
MSASN1.dll 6.3.19041.546
XInput1_4.dll 6.3.19041.844
MMDevAPI.DLL 6.3.19041.1023
wdmaud.drv 6.3.19041.1
ksuser.dll 6.3.19041.1
AVRT.dll 6.3.19041.546
AUDIOSES.DLL 6.3.19041.1023
msacm32.drv 6.3.19041.488
MSACM32.dll 6.3.19041.1
midimap.dll 6.3.19041.488
resourcepolicyclient.dll 6.3.19041.546
Windows.UI.dll 6.3.19041.746
WindowManagementAPI.dll
twinapi.appcore.dll 6.3.19041.746
mswsock.dll 6.3.19041.546
shlwapi.dll 6.3.19041.1023
Windows 6.3.9600
DrMingw 0.9.0
Crash after printing random things and pressing the enter key
-------------------
Error occurred on Thursday, January 6, 2022 at 23:17:45.
srb2win.exe caused an Access Violation at location 75929820 in module msvcrt.dll Reading from location 841F1A40.
Registers:
eax=841f1a40 ebx=0000000d ecx=841f1a40 edx=0093ff24 esi=00000001 edi=841f1a40
eip=75929820 esp=0569fb8c ebp=35838034 iopl=0 nv up ei pl zr na po nc
cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00210246
AddrPC Params
75929820 841F1A40 00000001 00000001 msvcrt.dll!strlen
00464C13 00000000 00000000 00000000 srb2win.exe!Z_StrDup
srb2win.exe 2.2.10.0
ntdll.dll 6.3.19041.1288
KERNEL32.DLL 6.3.19041.1348
KERNELBASE.dll 6.3.19041.1348
ADVAPI32.dll 6.3.19041.1052
msvcrt.dll 7.0.19041.546
sechost.dll 6.3.19041.906
RPCRT4.dll 6.3.19041.1288
WS2_32.dll 6.3.19041.546
libcurl.dll 7.69.0.0
CRYPT32.dll 6.3.19041.1320
ucrtbase.dll 6.3.19041.789
wldap32.dll 6.3.19041.546
libgme.dll
USER32.dll 6.3.19041.1348
win32u.dll 6.3.19041.1320
libopenmpt.dll 1.0.0.0
GDI32.dll 6.3.19041.1202
gdi32full.dll 6.3.19041.1320
msvcp_win.dll 6.3.19041.789
SDL2.dll 2.0.10.0
SDL2_mixer_ext.dll 2.1.0.0
IMM32.DLL 6.3.19041.546
ole32.dll 6.3.19041.1202
combase.dll 6.3.19041.1348
OLEAUT32.dll 6.3.19041.985
libgcc_s_sjlj-1.dll
SETUPAPI.dll 6.3.19041.1237
cfgmgr32.dll 6.3.19041.1151
WINMM.DLL 6.3.19041.546
bcrypt.dll 6.3.19041.1023
SHELL32.dll 6.3.19041.1320
VERSION.dll 6.3.19041.546
libfluidsynth-2.dll
libstdc++-6.dll
DSOUND.dll 6.3.19041.1
powrprof.dll 6.3.19041.546
winmmbase.dll 6.3.19041.1
UMPDC.dll
uxtheme.dll 6.3.19041.1266
MSCTF.dll 6.3.19041.1202
exchndl.dll 0.9.0.0
PSAPI.DLL 6.3.19041.546
mgwhelp.dll 0.9.0.0
dbghelp.dll 6.3.19041.1052
dbgcore.DLL 6.3.19041.546
SHCORE.DLL 6.3.19041.1320
kernel.appcore.dll 6.3.19041.546
bcryptPrimitives.dll 6.3.19041.1348
clbcatq.dll 2001.12.10941.16384
textinputframework.dll 6.3.19041.1320
CoreUIComponents.dll 6.3.19041.546
CoreMessaging.dll 6.3.19041.867
ntmarta.dll 6.3.19041.546
wintypes.dll 6.3.19041.1348
D3D9.DLL 6.3.19041.928
dwmapi.dll 6.3.19041.746
windows.storage.dll 6.3.19041.1320
Wldp.dll 6.3.19041.1320
igdumdx32.dll 8.15.10.2900
igdumd32.dll 8.15.10.2900
dinput8.dll 6.3.19041.1
HID.DLL 6.3.19041.546
inputhost.dll 6.3.19041.906
PROPSYS.dll 7.0.19041.1023
DEVOBJ.dll 6.3.19041.1151
WINTRUST.dll 6.3.19041.1266
MSASN1.dll 6.3.19041.546
XInput1_4.dll 6.3.19041.844
MMDevAPI.DLL 6.3.19041.1023
wdmaud.drv 6.3.19041.1
ksuser.dll 6.3.19041.1
AVRT.dll 6.3.19041.546
AUDIOSES.DLL 6.3.19041.1023
msacm32.drv 6.3.19041.488
MSACM32.dll 6.3.19041.1
midimap.dll 6.3.19041.488
resourcepolicyclient.dll 6.3.19041.546
Windows.UI.dll 6.3.19041.746
WindowManagementAPI.dll
twinapi.appcore.dll 6.3.19041.746
mswsock.dll 6.3.19041.546
shlwapi.dll 6.3.19041.1023
Windows 6.3.9600
DrMingw 0.9.0
Crash after binding garbage to P, closing console, pressing P and opening it
-------------------
Error occurred on Thursday, January 6, 2022 at 23:23:29.
srb2win.exe caused an Access Violation at location 0048DB67 in module srb2win.exe Reading from location D867C2A9.
Registers:
eax=8fe67140 ebx=00000010 ecx=00000000 edx=00000000 esi=00000040 edi=48815169
eip=0048db67 esp=0569fcf0 ebp=000002e0 iopl=0 nv up ei pl nz na pe nc
cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00210202
AddrPC Params
0048DB67 48815169 00000001 8FE67140 srb2win.exe!CON_Drawer
65B0D594 05944250 00000020 00000000 SDL2.dll!SDL_DYNAPI_entry
0043654D 00000001 65B0E3A8 0569FD88 srb2win.exe!D_Display.part.0
00443107 00000000 00000000 00000000 srb2win.exe!TryRunTics
srb2win.exe 2.2.10.0
ntdll.dll 6.3.19041.1288
KERNEL32.DLL 6.3.19041.1348
KERNELBASE.dll 6.3.19041.1348
ADVAPI32.dll 6.3.19041.1052
msvcrt.dll 7.0.19041.546
sechost.dll 6.3.19041.906
RPCRT4.dll 6.3.19041.1288
WS2_32.dll 6.3.19041.546
libcurl.dll 7.69.0.0
CRYPT32.dll 6.3.19041.1320
ucrtbase.dll 6.3.19041.789
wldap32.dll 6.3.19041.546
libgme.dll
USER32.dll 6.3.19041.1348
win32u.dll 6.3.19041.1320
GDI32.dll 6.3.19041.1202
gdi32full.dll 6.3.19041.1320
msvcp_win.dll 6.3.19041.789
libopenmpt.dll 1.0.0.0
SDL2.dll 2.0.10.0
IMM32.DLL 6.3.19041.546
ole32.dll 6.3.19041.1202
combase.dll 6.3.19041.1348
OLEAUT32.dll 6.3.19041.985
SDL2_mixer_ext.dll 2.1.0.0
SETUPAPI.dll 6.3.19041.1237
cfgmgr32.dll 6.3.19041.1151
bcrypt.dll 6.3.19041.1023
SHELL32.dll 6.3.19041.1320
libgcc_s_sjlj-1.dll
WINMM.DLL 6.3.19041.546
VERSION.dll 6.3.19041.546
libfluidsynth-2.dll
libstdc++-6.dll
DSOUND.dll 6.3.19041.1
powrprof.dll 6.3.19041.546
winmmbase.dll 6.3.19041.1
UMPDC.dll
uxtheme.dll 6.3.19041.1266
MSCTF.dll 6.3.19041.1202
exchndl.dll 0.9.0.0
PSAPI.DLL 6.3.19041.546
mgwhelp.dll 0.9.0.0
dbghelp.dll 6.3.19041.1052
dbgcore.DLL 6.3.19041.546
SHCORE.DLL 6.3.19041.1320
kernel.appcore.dll 6.3.19041.546
bcryptPrimitives.dll 6.3.19041.1348
clbcatq.dll 2001.12.10941.16384
textinputframework.dll 6.3.19041.1320
CoreMessaging.dll 6.3.19041.867
CoreUIComponents.dll 6.3.19041.546
ntmarta.dll 6.3.19041.546
wintypes.dll 6.3.19041.1348
D3D9.DLL 6.3.19041.928
dwmapi.dll 6.3.19041.746
windows.storage.dll 6.3.19041.1320
Wldp.dll 6.3.19041.1320
igdumdx32.dll 8.15.10.2900
igdumd32.dll 8.15.10.2900
dinput8.dll 6.3.19041.1
HID.DLL 6.3.19041.546
inputhost.dll 6.3.19041.906
PROPSYS.dll 7.0.19041.1023
DEVOBJ.dll 6.3.19041.1151
WINTRUST.dll 6.3.19041.1266
MSASN1.dll 6.3.19041.546
XInput1_4.dll 6.3.19041.844
MMDevAPI.DLL 6.3.19041.1023
wdmaud.drv 6.3.19041.1
ksuser.dll 6.3.19041.1
AVRT.dll 6.3.19041.546
AUDIOSES.DLL 6.3.19041.1023
msacm32.drv 6.3.19041.488
MSACM32.dll 6.3.19041.1
midimap.dll 6.3.19041.488
resourcepolicyclient.dll 6.3.19041.546
Windows.UI.dll 6.3.19041.746
WindowManagementAPI.dll
twinapi.appcore.dll 6.3.19041.746
mswsock.dll 6.3.19041.546
shlwapi.dll 6.3.19041.1023
Windows 6.3.9600
DrMingw 0.9.0