Bug 696398 - Seg faults found by fuzzing in gxht_thresh_image_init (gxht_thresh.c:740)
Summary: Seg faults found by fuzzing in gxht_thresh_image_init (gxht_thresh.c:740)
Status: RESOLVED FIXED
Alias: None
Product: Ghostscript
Classification: Unclassified
Component: Fuzzing (show other bugs)
Version: master
Hardware: PC Linux
: P4 normal
Assignee: Ray Johnston
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-11-20 18:35 UTC by Marcos H. Woehrmann
Modified: 2017-07-20 10:28 UTC (History)
0 users

See Also:
Customer:
Word Size: ---

Attachments
log.txt (13.92 KB, text/plain)
2015-11-20 18:35 UTC, Marcos H. Woehrmann 		Details
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcos H. Woehrmann 2015-11-20 18:35:18 UTC 
Created attachment 12122 [details]
log.txt

Seg faults were found by fuzzing in the 64 bit build of ghostscript (commit d368650e9f3e7e6e4af2d840ffa0dd1e161a9694) in gxht_thresh_image_init (gxht_thresh.c:740). See the attached log.txt for details.

The command line used for testing:

  ./gs -o /dev/null -sDEVICE=pbmraw -r72 -dMaxBitmap=400000000 PSEL61CC_X_3.pdf.968

The test file can be found in tests_private/fuzzing/gs.
Comment 1 Ray Johnston 2017-07-18 08:47:34 UTC 
Able to reproduce with commit cea2da4aae1edbf6aef128f44962cfe8baa5c728
Comment 2 Ray Johnston 2017-07-20 10:28:28 UTC 
Fixed by commit 983e56cb679768fe5a048fbb33a43259efb9afbf