oss-sec mailing list archives
Re: ghostscript double free and invalid read caused by embedded jbig2 data
From: Hanno Böck <hanno () hboeck de>
Date: Sat, 7 Feb 2015 18:33:47 +0100
On Sat, 07 Feb 2015 10:27:29 -0700 Kurt Seifried <kseifried () redhat com> wrote:
https://bugzilla.redhat.com/show_bug.cgi?id=570425 I'm pretty sure this issue is different than CVE-2009-0196
Ghostscript right now has ~180 open unfixed bugs from fuzzing: http://bugs.ghostscript.com/buglist.cgi?component=fuzzing&query_format=advanced&resolution=--- I believe most of them are related to this fuzzing effort from 2013: http://gynvael.coldwind.pl/?id=493 (I think Gynvael is on this list, maybe he can comment on the state) gs already does invalid memory reads without any fuzzing at all. Just compile it with asan and try to use the pdfwrite device. -- Hanno Böck http://hboeck.de/ mail/jabber: hanno () hboeck de GPG: BBB51E42
Attachment:
_bin
Description: OpenPGP digital signature
Current thread:
- ghostscript double free and invalid read caused by embedded jbig2 data Kurt Seifried (Feb 07)
- Re: ghostscript double free and invalid read caused by embedded jbig2 data Hanno Böck (Feb 07)
- Re: ghostscript double free and invalid read caused by embedded jbig2 data Gynvael Coldwind (Feb 07)
- Re: ghostscript double free and invalid read caused by embedded jbig2 data Hanno Böck (Feb 07)