oss-sec mailing list archives
podofo: NULL pointer dereference in PdfOutputStream.cpp
From: Agostino Sarubbo <ago () gentoo org>
Date: Wed, 01 Feb 2017 16:12:19 +0100
Description: podofo is a C++ library to work with the PDF file format. A fuzz on it with the UBSAN discovered a NULL pointer access. The upstream project denies me to open a new ticket. So, I’m unable to communicate with them. The complete UBSan output: # podofopdfinfo $FILE /tmp/portage/app- text/podofo-0.9.4/work/podofo-0.9.4/src/base/PdfOutputStream.cpp:116:33: runtime error: null pointer passed as argument 2, which is declared to never be null Affected version: 0.9.4 Fixed version: N/A Commit fix: N/A Credit: This bug was discovered by Agostino Sarubbo of Gentoo. CVE: N/A Reproducer: https://github.com/asarubbo/poc/blob/master/00143-podofo-nullptr-PdfOutputStream Timeline: 2017-01-05: bug discovered 2017-02-01: blog post about the issue Note: This bug was found with American Fuzzy Lop. Permalink: https://blogs.gentoo.org/ago/2017/02/01/podofo-null-pointer-dereference-in-pdfoutputstream-cpp -- Agostino Sarubbo Gentoo Linux Developer
Current thread:
- podofo: NULL pointer dereference in PdfOutputStream.cpp Agostino Sarubbo (Feb 01)
- Re: podofo: NULL pointer dereference in PdfOutputStream.cpp cve-assign (Feb 01)