Heap-buffer-overflow in tt_face_vary_cvt

2016-10-13T23:36:24
ID OSSFUZZ-53
Type ossfuzz
Reporter Google
Modified 2017-11-15T05:20:42

Description

Project: https://github.com/freetype/freetype2-testing.git

Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6269022198824960

Fuzzer: libFuzzer_freetype2_fuzzer Job Type: libfuzzer_asan_freetype2 Platform Id: linux

Crash Type: Heap-buffer-overflow READ 2 Crash Address: 0x615000000ffa Crash State: tt_face_vary_cvt TT_Set_MM_Blend TT_Set_Var_Design

Recommended Security Severity: Medium

Regressed: https://clusterfuzz-external.appspot.com/revisions?job=libfuzzer_asan_freetype2&range=201605242252:201605250605

Minimized Testcase (1.31 Kb): https://clusterfuzz-external.appspot.com/download/AMIfv951N0zOd_zY8BRAVnFTWXEkrcaYRqT1j28mvKr4Y03TBa-YIywVo6rXYl5Zk0lY-w_q27eQ5uWpdbprALJYEyZCGRMoJPS6EojCJupxlo_rKv5H474YSu488vZfwnEZxosZWi7VMeVprKasPW-xf1nIJ6r06IQFJ0kmdpb4xo8x2aYmlDA?testcase_id=6269022198824960

Issue filed automatically.

See for more information.