Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released

Hanno Böck <hanno -AT- hboeck.de>
Sat, 20 Dec 2014 17:44:50 +0100

Hi,

I did a quick run with american fuzzy lop on libabw and it found the
attached crasher.
Attached both sample exposing segfault and asan/valgrind output. It's
an invalid memory read access.

As here are a lot of people working on import filters: These are very
suspectible to these type of memory access errors and they can often
easily be found with fuzzing. You may wanna have a look at
https://fuzzing-project.org

cu,
-- 
Hanno Böck
http://hboeck.de/

mail/jabber: hanno@hboeck.de
GPG: BBB51E42

Attachment: libabw-segfault.tar.xz
Description: application/xz

Attachment: pgp0_vDKARPnK.pgp
Description: OpenPGP digital signature

Context

[ANN] libabw 0.1.1 has been released · David Tardon
- Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released · Hanno Böck
  - Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released · David Tardon
    - Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released · alfieri morillo
    - Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released · Chris Sherlock
      - Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released · Hanno Böck

Privacy Policy | Impressum (Legal Info) | Copyright information: Unless otherwise specified, all text and images on this website are licensed under the Creative Commons Attribution-Share Alike 3.0 License. This does not include the source code of LibreOffice, which is licensed under the Mozilla Public License (MPLv2). "LibreOffice" and "The Document Foundation" are registered trademarks of their corresponding registered owners or are in actual use as trademarks in one or more countries. Their respective logos and icons are also subject to international copyright laws. Use thereof is explained in our trademark policy.