See https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md for more information.
This bug is subject to a 90 day disclosure deadline. If 90 days elapse
without an upstream patch, then the bug report will automatically
become visible to the public.
When you fix this bug, please
* mention the fix revision(s).
* state whether the bug was a short-lived regression or an old bug in any stable releases.
* add any other useful information.
This information can help downstream consumers.
If you have questions for the OSS-Fuzz team, please file an issue at https://github.com/google/oss-fuzz/issues.
{"id": "OSSFUZZ-5339", "type": "ossfuzz", "bulletinFamily": "software", "title": "libreoffice/ww8fuzzer: Bad-cast to SwContentNode from SwClient in SwNode::GetContentNode", "description": "Project:\ngit://anongit.freedesktop.org/libreoffice/core\n\nDetailed report: https://oss-fuzz.com/testcase?key=6211151563063296\n\nProject: libreoffice\nFuzzer: libFuzzer_libreoffice_ww8fuzzer\nFuzz target binary: ww8fuzzer\nJob Type: libfuzzer_ubsan_libreoffice\nPlatform Id: linux\n\nCrash Type: Bad-cast\nCrash Address: 0x7fa3c415cc18\nCrash State:\n Bad-cast to SwContentNode from SwClient\n SwNode::GetContentNode\n SwPosition::SwPosition\n \nSanitizer: undefined (UBSAN)\n\nRecommended Security Severity: High\n\nReproducer Testcase: https://oss-fuzz.com/download?testcase_id=6211151563063296\n\nIssue filed automatically.\n\nSee https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md for more information.\n\nThis bug is subject to a 90 day disclosure deadline. If 90 days elapse\nwithout an upstream patch, then the bug report will automatically\nbecome visible to the public.\n\nWhen you fix this bug, please\n * mention the fix revision(s).\n * state whether the bug was a short-lived regression or an old bug in any stable releases.\n * add any other useful information.\nThis information can help downstream consumers.\n\nIf you have questions for the OSS-Fuzz team, please file an issue at https://github.com/google/oss-fuzz/issues.", "published": "2018-01-15T14:55:07", "modified": "2019-03-04T16:56:33", "cvss": {}, "href": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5339", "reporter": "Google", "references": [], "cvelist": [], "lastseen": "2020-04-03T17:53:10", "viewCount": 0, "enchantments": {"dependencies": {"references": [], "modified": "2020-04-03T17:53:10", "rev": 2}, "score": {"value": -0.6, "vector": "NONE", "modified": "2020-04-03T17:53:10", "rev": 2}, "vulnersScore": -0.6}, "ossfuzz": {"issue": 5339, "status": "Verified", "project": "libreoffice", "ref": "https://oss-fuzz.com/revisions?job=libfuzzer_ubsan_libreoffice&range=201801150638:201801160525", "crashType": "Bad-cast", "revisions": ["bfaf85248c49249366434208ca7b71cbf6d930c1:3b773d5b41628c1ccf52bdd0d7962183d54c4138"], "project_repos": ["git://anongit.freedesktop.org/libreoffice/core"], "tags": ["5.4.99", "2.0.0", "3.5.0.0", "2011.11.08", "3.4.2.2-buildfix1", "3.3.99.4-hotfixes1"]}, "affectedSoftware": [{"name": "libreoffice", "version": "2011.11.08", "operator": "eq"}, {"name": "libreoffice", "version": "5.4.99", "operator": "eq"}, {"name": "libreoffice", "version": "3.5.0.0", "operator": "eq"}, {"name": "libreoffice", "version": "3.4.2.2-buildfix1", "operator": "eq"}, {"name": "libreoffice", "version": "3.3.99.4-hotfixes1", "operator": "eq"}, {"name": "libreoffice", "version": "2.0.0", "operator": "eq"}], "immutableFields": []}
