[Bug 1589191] Re: SEGV in coders/rle.c:405:15

Bug Watch Updater 1589191 at bugs.launchpad.net
Thu May 2 20:06:56 UTC 2019 

** Changed in: imagemagick
       Status: Unknown => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to imagemagick in Ubuntu.
https://bugs.launchpad.net/bugs/1589191

Title:
  SEGV in coders/rle.c:405:15

Status in ImageMagick:
  Fix Released
Status in imagemagick package in Ubuntu:
  Fix Released

Bug description:
  This bug was found while fuzzing ImageMagick with afl-fuzz

  Tested on ImageMagick git commit
  f435e8724ade942148d065a4b898a0ed0c42c368

  
  Command: magick id:000436,sig:06,src:007470+006951,op:splice,rep:8 /dev/null

  ASAN:SIGSEGV
  =================================================================
  ==11484==ERROR: AddressSanitizer: SEGV on unknown address 0xb6063e38 (pc 0x08486fe9 bp 0xbfd94d78 sp 0xbfd93a40 T0)
      #0 0x8486fe8 in ReadRLEImage /home/user/Desktop/ImageMagick/coders/rle.c:405:15
      #1 0x85f17b3 in ReadImage /home/user/Desktop/ImageMagick/MagickCore/constitute.c:496:13
      #2 0x85f52a4 in ReadImages /home/user/Desktop/ImageMagick/MagickCore/constitute.c:851:9
      #3 0x8bd3193 in CLINoImageOperator /home/user/Desktop/ImageMagick/MagickWand/operation.c:4705:22
      #4 0x8bd697f in CLIOption /home/user/Desktop/ImageMagick/MagickWand/operation.c:5199:7
      #5 0x8a94b84 in ProcessCommandOptions /home/user/Desktop/ImageMagick/MagickWand/magick-cli.c:474:7
      #6 0x8a95ee2 in MagickImageCommand /home/user/Desktop/ImageMagick/MagickWand/magick-cli.c:791:5
      #7 0x8a9809d in MagickCommandGenesis /home/user/Desktop/ImageMagick/MagickWand/mogrify.c:183:14
      #8 0x81434a3 in MagickMain /home/user/Desktop/ImageMagick/utilities/magick.c:145:10
      #9 0x81434a3 in main /home/user/Desktop/ImageMagick/utilities/magick.c:176
      #10 0xb74847ad in __libc_start_main /build/glibc-xt1eTb/glibc-2.21/csu/libc-start.c:289
      #11 0x808956b in _start (/usr/local/bin/magick+0x808956b)

  AddressSanitizer can not provide additional info.
  SUMMARY: AddressSanitizer: SEGV /home/user/Desktop/ImageMagick/coders/rle.c:405 ReadRLEImage
  ==11484==ABORTING

To manage notifications about this bug go to:
https://bugs.launchpad.net/imagemagick/+bug/1589191/+subscriptions

More information about the foundations-bugs mailing list