Category Archives: security

Description: mp3gain is a program to analyze and adjust MP3 files to same volume. The fuzz was done via the aacgain command-line tool which uses mp3gain which bundles an old-modified version of mpg123 called mpglibDBL. The upstream project seems to … Continue reading →

Description: mp3gain is a program to analyze and adjust MP3 files to same volume. The fuzz was done via the aacgain command-line tool which uses mp3gain which bundles an old-modified version of mpg123 called mpglibDBL. The upstream project seems to … Continue reading →

Description: mp3gain is a program to analyze and adjust MP3 files to same volume. The fuzz was done via the aacgain command-line tool which uses mp3gain which bundles an old-modified version of mpg123 called mpglibDBL. The upstream project seems to … Continue reading →

Description: mp3gain is a program to analyze and adjust MP3 files to same volume. The fuzz was done via the aacgain command-line tool which uses mp3gain. The upstream project seems to be dead, so the issue wasn’t communicated to them. … Continue reading →

Description: aacplusenc is an High-Efficiency AAC (AAC+) Encoder. The complete ASan output of the issue: # aacplusenc $FILE out.aac 32 ************************************************************* * Enhanced aacPlus Encoder * Build Aug 30 2017, 14:40:49 * Matteo Croce ************************************************************* input file 101.crashes.wav: sr = … Continue reading →

Description: libarchive is a multi-format archive and compression library. The complete ASan output of the issue: # bsdtar -t -f $FILE ==13144==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x631000038800 at pc 0x7fb1c808f650 bp 0x7ffdd1b40990 sp 0x7ffdd1b40988 READ of size 1 at 0x631000038800 … Continue reading →

Description: graphicsmagick is a collection of tools and libraries for many image formats. The relevant ASan output of the issue: # gm convert -negate -clip $file out ==25373==End of process memory map. ==25373==AddressSanitizer CHECK failed: /var/tmp/portage/sys-libs/compiler-rt-sanitizers-4.0.1/work/compiler-rt-4.0.1.src/lib/sanitizer_common/sanitizer_common.cc:120 “((0 && “unable to … Continue reading →

Description: openjpeg is an open-source JPEG 2000 library. The fix for CVE-2017-14152 seems that wasn’t enough. The complete ASan output of the issue: # opj_compress -r 20,10,1 -jpip -EPH -SOP -cinema2K 24 -n 1 -i $FILE -o null.j2k TIFFReadDirectoryCheckOrder: Warning, … Continue reading →

Description: libzip is a library for manipulating zip archives. The relevant ASan output of the issue: # ziptool $FILE cat index ==1771==ERROR: AddressSanitizer: heap-use-after-free on address 0x6030000000d1 at pc 0x7f267d085fc1 bp 0x7ffed21f65f0 sp 0x7ffed21f65e8 READ of size 1 at 0x6030000000d1 … Continue reading →

Description: libzip is a library for manipulating zip archives. The relevant ASan output of the issue: # ziptool $FILE cat index ==16798==ERROR: AddressSanitizer failed to allocate 0xc0a96a2000 (827476025344) bytes of LargeMmapAllocator (error code: 12) ==16798==Process memory map follows: ==16798==End of … Continue reading →