Search...

cryptofuzz:cryptofuzz-nss: Use-of-uninitialized-value in _gcry_camellia_encrypt128

2020-04-20T18:13:37

ID OSSFUZZ-21798
Type ossfuzz
Reporter Google
Modified 2020-05-24T20:01:55

Description

Project: https://github.com/guidovranken/cryptofuzz.git

Detailed Report: https://oss-fuzz.com/testcase?key=5190522215071744

Project: cryptofuzz Fuzzing Engine: libFuzzer Fuzz Target: cryptofuzz-nss Job Type: libfuzzer_msan_cryptofuzz Platform Id: linux

Crash Type: Use-of-uninitialized-value Crash Address: Crash State: _gcry_camellia_encrypt128 _gcry_Camellia_EncryptBlock camellia_encrypt

Sanitizer: memory (MSAN)

Recommended Security Severity: Medium

Regressed: https://oss-fuzz.com/revisions?job=libfuzzer_msan_cryptofuzz&range=202004180148:202004190509

Reproducer Testcase: https://oss-fuzz.com/download?testcase_id=5190522215071744

Issue filed automatically.

See https://google.github.io/oss-fuzz/advanced-topics/reproducing for instructions to reproduce this bug locally. When you fix this bug, please * mention the fix revision(s). * state whether the bug was a short-lived regression or an old bug in any stable releases. * add any other useful information. This information can help downstream consumers.

If you need to contact the OSS-Fuzz team with a question, concern, or any other feedback, please file an issue at https://github.com/google/oss-fuzz/issues. Comments on individual Monorail issues are not monitored.

This bug is subject to a 90 day disclosure deadline. If 90 days elapse without an upstream patch, then the bug report will automatically become visible to the public.

JSON Vulners Source

Initial Source

{"id": "OSSFUZZ-21798", "type": "ossfuzz", "bulletinFamily": "software", "title": "cryptofuzz:cryptofuzz-nss: Use-of-uninitialized-value in _gcry_camellia_encrypt128", "description": "Project:\nhttps://github.com/guidovranken/cryptofuzz.git\n\nDetailed Report: https://oss-fuzz.com/testcase?key=5190522215071744\n\nProject: cryptofuzz\nFuzzing Engine: libFuzzer\nFuzz Target: cryptofuzz-nss\nJob Type: libfuzzer_msan_cryptofuzz\nPlatform Id: linux\n\nCrash Type: Use-of-uninitialized-value\nCrash Address: \nCrash State:\n _gcry_camellia_encrypt128\n _gcry_Camellia_EncryptBlock\n camellia_encrypt\n \nSanitizer: memory (MSAN)\n\nRecommended Security Severity: Medium\n\nRegressed: https://oss-fuzz.com/revisions?job=libfuzzer_msan_cryptofuzz&range=202004180148:202004190509\n\nReproducer Testcase: https://oss-fuzz.com/download?testcase_id=5190522215071744\n\nIssue filed automatically.\n\nSee https://google.github.io/oss-fuzz/advanced-topics/reproducing for instructions to reproduce this bug locally.\nWhen you fix this bug, please\n * mention the fix revision(s).\n * state whether the bug was a short-lived regression or an old bug in any stable releases.\n * add any other useful information.\nThis information can help downstream consumers.\n\nIf you need to contact the OSS-Fuzz team with a question, concern, or any other feedback, please file an issue at https://github.com/google/oss-fuzz/issues. Comments on individual Monorail issues are not monitored.\n\nThis bug is subject to a 90 day disclosure deadline. If 90 days elapse\nwithout an upstream patch, then the bug report will automatically\nbecome visible to the public.", "published": "2020-04-20T18:13:37", "modified": "2020-05-24T20:01:55", "cvss": {}, "href": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21798", "reporter": "Google", "references": [], "cvelist": [], "lastseen": "2020-05-24T20:24:45", "viewCount": 1, "enchantments": {"dependencies": {"references": [], "modified": "2020-05-24T20:24:45", "rev": 2}, "score": {"value": -0.7, "vector": "NONE", "modified": "2020-05-24T20:24:45", "rev": 2}, "vulnersScore": -0.7}, "ossfuzz": {"issue": 21798, "status": "Verified", "project": "cryptofuzz", "ref": "https://oss-fuzz.com/revisions?job=libfuzzer_msan_cryptofuzz&range=202004200152:202004220455", "crashType": "Use-of-uninitialized-value", "revisions": ["5b555555c6e6683f608798a3ff6c07e424b61eca"], "project_repos": ["https://github.com/guidovranken/cryptofuzz.git"], "tags": []}, "affectedSoftware": [{"name": "cryptofuzz", "version": "unknown", "operator": "eq"}]}