oss-sec mailing list archives
Re: CVE request: out-of-bounds memory access flaw in unrtf
From: Fabian Keil <freebsd-listen () fabiankeil de>
Date: Fri, 5 Dec 2014 13:02:40 +0100
Hanno Böck <hanno () hboeck de> wrote:
On Thu, 4 Dec 2014 20:32:25 +0100 Fabian Keil <freebsd-listen () fabiankeil de> wrote:Potential fixes: http://www.fabiankeil.de/sourcecode/unrtf-0.21.5-various-fixes.diffThanks, it's just that it doesn't help much (see attachment, all crashes with your patch applied).
Thanks for testing the patches. I added another patch to the set that seems to fix the crashes with your attached files when executed through afl-showmap. At least the first 300k afl-fuzz execs (355 total paths) seem to be crash free now. Fabian
Attachment:
_bin
Description: OpenPGP digital signature
Current thread:
- CVE request: out-of-bounds memory access flaw in unrtf Vincent Danen (Dec 03)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Hanno Böck (Dec 03)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Michal Zalewski (Dec 03)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Vincent Danen (Dec 04)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Fabian Keil (Dec 04)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Hanno Böck (Dec 04)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Fabian Keil (Dec 05)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Hanno Böck (Dec 08)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Alexander Cherepanov (Dec 11)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Hanno Böck (Dec 21)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Michal Zalewski (Dec 03)
- Re: CVE request: out-of-bounds memory access flaw in unrtf Hanno Böck (Dec 03)