Lucene search

K
ossfuzzGoogleOSSFUZZ-15855
HistoryJul 15, 2019 - 5:40 p.m.

freeimage/load_from_memory_fuzzer: Global-buffer-overflow in LibRaw::parse_makernote

2019-07-1517:40:14
Google
bugs.chromium.org
10
freeimage
libfuzzer
global-buffer-overflow
asan
address
linux
libraw
parse_makernote
parse_exif
parse_tiff_ifd
bug
disclosure deadline
security
software

Detailed report: https://oss-fuzz.com/testcase?key=5116280533680128

Project: freeimage
Fuzzer: libFuzzer_freeimage_load_from_memory_fuzzer
Fuzz target binary: load_from_memory_fuzzer
Job Type: libfuzzer_asan_freeimage
Platform Id: linux

Crash Type: Global-buffer-overflow READ 4
Crash Address: 0x000000f331fc
Crash State:
LibRaw::parse_makernote
LibRaw::parse_exif
LibRaw::parse_tiff_ifd

Sanitizer: address (ASAN)

Reproducer Testcase: https://oss-fuzz.com/download?testcase_id=5116280533680128

Issue filed automatically.

See https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md for instructions to reproduce this bug locally.

This bug is subject to a 90 day disclosure deadline. If 90 days elapse
without an upstream patch, then the bug report will automatically
become visible to the public.