Summary: | Some issues found fuzzing mupdf | ||
---|---|---|---|
Product: | MuPDF | Reporter: | Marco Grassi <marco.gra> |
Component: | fuzzing | Assignee: | MuPDF bugs <mupdf-bugs> |
Status: | RESOLVED WORKSFORME | ||
Severity: | normal | CC: | marco.gra, mehmetgelisin, robin.watts, sebastian.rasmussen, vficaj |
Priority: | P4 | ||
Version: | master | ||
Hardware: | PC | ||
OS: | Linux | ||
Customer: | Word Size: | --- | |
Attachments: | mupdf issues |
Description
Marco Grassi
2015-05-26 12:51:58 UTC
I belive that the commit below fixes the problem illustrated by mupdf_doublefree.pdf from issues.zip http://git.ghostscript.com/?p=user/sebras/mupdf.git;a=commit;h=8832b9a6a0444a0c3df2e5b3ce4cb00807dabd1a Marco Grassi, do you mind explaining how you ran afl-fuzz to find these? Another two bugs are fixed here: http://git.ghostscript.com/?p=user/sebras/mupdf.git;a=commit;h=106028f987f40352fe611c487945fedf99165b18 and http://git.ghostscript.com/?p=user/sebras/mupdf.git;a=commit;h=52180016685d587e78a81a315b7763694db5b116 Many thanks for these. Testing with the latest release version on Windows shows no crashes. Testing with valgrind on 64bit Ubuntu shows no leaks or illegal accesses. I can only think that we've fixed the issues. If you do not believe this to be the case, please let us know! Thanks again. User disabled due to spam, spam comment marked private to make it invisible |