[Poppler-bugs] [Bug 10898] New: Crash on fuzzed PDF at Parser.cc:192
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Wed May 9 15:26:57 PDT 2007
http://bugs.freedesktop.org/show_bug.cgi?id=10898
Summary: Crash on fuzzed PDF at Parser.cc:192
Product: poppler
Version: unspecified
Platform: x86 (IA32)
OS/Version: Linux (All)
Status: NEW
Severity: normal
Priority: medium
Component: general
AssignedTo: poppler-bugs at lists.freedesktop.org
ReportedBy: victor.stinner at haypocalc.com
I tried my fuzzer program on poppler and after few minutes I found a bug. I
generated a PDF which crash libpoppler 0.5.4, here is the backtrace (given by
Valgrind):
Invalid read of size 4
at 0x688813A: Parser::makeStream(Object*) (Parser.cc:192)
by 0x6888576: Parser::getObj(Object*, unsigned char*, int, int, int)
(Parser.cc:91)
by 0x6888298: Parser::getObj(Object*, unsigned char*, int, int, int)
(Parser.cc:64)
by 0x6888298: Parser::getObj(Object*, unsigned char*, int, int, int)
(Parser.cc:64)
by 0x68337B6: Gfx::go(int) (Gfx.cc:642)
by 0x6833A62: Gfx::display(Object*, int) (Gfx.cc:543)
--
Configure bugmail: http://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the Poppler-bugs
mailing list