-
Recent Posts
Recent Comments
- strongcourage on Why I stopped fuzzing research
- Bob Friesenhahn on Why I stopped fuzzing research
- #gentoo dev: Why I stopped fuzzing research https://blogs.gentoo.or… | Dr. Roy Schestowitz (罗伊) on Why I stopped fuzzing research
- Ulya on Why I stopped fuzzing research
- ago on Install Gentoo in less than one minute
Archives
- February 2025
- July 2020
- April 2020
- March 2019
- October 2017
- September 2017
- August 2017
- July 2017
- June 2017
- May 2017
- April 2017
- March 2017
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- February 2016
- July 2015
- August 2013
- June 2013
- May 2013
- January 2013
- December 2012
- November 2012
- October 2012
- August 2012
- July 2012
- June 2012
Categories
Meta
Monthly Archives: September 2016
graphicsmagick: stack-based buffer overflow in ReadSCTImage (sct.c)
Description: Graphicsmagick is an Image Processing System. After the first round of fuzzing where I discovered some slowness issues that make the fuzz hard, the second round revealed a stack-buffer-overflow. The complete ASan output: # gm identify $FILE ==23362==ERROR: AddressSanitizer: … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar: stack-based buffer overflow in bsdtar_expand_char (util.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. This bug comes out after 5 days of fuzzing and when AFL reports … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar use-after-free in detect_form (archive_read_support_format_mtree.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. A crafted file causes an use-after-free in the detect_form function in the mtree … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar use-after-free in bid_entry (archive_read_support_format_mtree.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. A crafted file causes an use-after-free in the bid_entry function in the mtree … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar: heap-based buffer overflow in bid_entry (archive_read_support_format_mtree.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. A crafted file causes an heap overflow in the bid_entry function in the … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar: memory corruption/unknown-crash in bid_entry (archive_read_support_format_mtree.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. A crafted file causes an heap overflow in the bid_entry function in the … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar: heap-based buffer overflow in read_Header (archive_read_support_format_7zip.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. A crafted file causes an heap overflow in the read_Header function in the … Continue reading
Posted in advisories, security
Leave a comment
libarchive: bsdtar: heap-based buffer overflow in detect_form (archive_read_support_format_mtree.c)
Description: libarchive is a multi-format archive and compression library. After it got fuzzed by hanno and some other people (1 2 3)I decided to fuzz it too. A crafted file causes an heap overflow in the detect_form function in the … Continue reading
Posted in advisories, security
Leave a comment
autotrace: heap-based buffer overflow in pstoedit_suffix_table_init (output-pstoedit.c)
Description: autotrace is a program for converting bitmaps to vector graphics. If compiled with Address Sanitizer, it shows that ANY bmp image causes an out-of-bounds write. The complete ASan output: # autotrace $FILE ==31756==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x61700000ff20 at … Continue reading
Posted in advisories, security
Leave a comment
ettercap: etterlog: NULL pointer dereference in fingerprint_search (ec_fingerprint.c)
Description: ettercap is a comprehensive suite for man in the middle attacks. Etterlog, which is part of the package, fails to read malformed data produced from the fuzzer and makes visible a NULL pointer access. The complete ASan output: # … Continue reading
Posted in advisories, security
Leave a comment