The latest version of hivex — the library for extracting and modifying Windows Registry hive files has been released. You can get the source from here.
I spent a lot of time examining real hive files from Windows machines and running the library under the awesome valgrind tool, and found one or two places where a corrupt hive file could cause hivex to read uninitialized memory. It’s not clear to me if these are security issues — I think they are not — but everyone is advised to upgrade to this version anyway.
hivex would be a great candidate for fuzz testing if anyone wants to try that.
Richard WM Jones 