[poppler] A few vulnerabilitiess in libpoppler
robert at swiecki.net
Mon Nov 22 16:10:54 PST 2010
I guess I can setup another round of fuzzing.
Nice job with fixing this.
On Mon, Nov 22, 2010 at 12:21 AM, Albert Astals Cid <aacid at kde.org> wrote:
> A Dijous, 21 d'octubre de 2010, Robert Święcki va escriure:
>> I was recently fuzzing libpoppler and found lots of crashes in it.
>> Some of them are of lesser importance, some look more serious. The
>> archive is here:
>> I tested it with Ubuntu's pdftoppm from poppler-utils_0.12.4-0ubuntu5
>> package on a 64bit system.
> The master branch should have all of these files fixed that were poppler
> fault, there are still some jpeg2k crashes in openjpeg.
> There is one file that doesn't crash per se but exhausts the computer memory
> (and then crashes :D)
> Hib it is doing mad allocations in your new code in Hints.cc, could you have a
> look at it, it is
> poppler mailing list
> poppler at lists.freedesktop.org
More information about the poppler