Bug 696398

Summary: Seg faults found by fuzzing in gxht_thresh_image_init (gxht_thresh.c:740)
Product: Ghostscript Reporter: Marcos H. Woehrmann <marcos.woehrmann>
Component: FuzzingAssignee: Ray Johnston <ray.johnston>
Status: RESOLVED FIXED    
Severity: normal    
Priority: P4    
Version: master   
Hardware: PC   
OS: Linux   
Customer: Word Size: ---
Attachments: log.txt

Description Marcos H. Woehrmann 2015-11-20 18:35:18 UTC 
Created attachment 12122 [details]
log.txt

Seg faults were found by fuzzing in the 64 bit build of ghostscript (commit d368650e9f3e7e6e4af2d840ffa0dd1e161a9694) in gxht_thresh_image_init (gxht_thresh.c:740). See the attached log.txt for details.

The command line used for testing:

  ./gs -o /dev/null -sDEVICE=pbmraw -r72 -dMaxBitmap=400000000 PSEL61CC_X_3.pdf.968

The test file can be found in tests_private/fuzzing/gs.
Comment 1 Ray Johnston 2017-07-18 08:47:34 UTC 
Able to reproduce with commit cea2da4aae1edbf6aef128f44962cfe8baa5c728
Comment 2 Ray Johnston 2017-07-20 10:28:28 UTC 
Fixed by commit 983e56cb679768fe5a048fbb33a43259efb9afbf