Arithmetic exception due to bad denom
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| TiMidity++ |
In Progress
|
Undecided
|
Unassigned | ||
| timidity (Debian) |
Fix Released
|
Unknown
|
|||
| timidity (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Was doing probabilistic fuzzing on TiMidity++ and got a divide trap.
1.
Description: Ubuntu 14.04.1 LTS
Release: 14.04
2.
timidity:
Installed: 2.13.2-40.2
Candidate: 2.13.2-40.2
Version table:
*** 2.13.2-40.2 0
500 http://
100 /var/lib/
3.
Graceful exit.
4.
SIGFPE (-8)
I've recompiled TiMidity++ for the symbols...
(gdb) r ../crash_
Starting program: /usr/local/
Playing ../crash_
MIDI file: ../crash_
Format: 1 Tracks: 2 Divisions: 5872
Program received signal SIGFPE, Arithmetic exception.
0x00000000005bdfe2 in read_midi_file () at readmidi.c:4594
4594 at += current_
(gdb) bt
#0 0x00000000005bdfe2 in read_midi_file () at readmidi.c:4594
#1 0x000000000056a88d in play_midi_file ()
#2 0x000000000056ea51 in dumb_pass_
#3 0x000000000040c7b6 in main () at timidity.c:5655
CVE References
| Chua Zheng Leong (melynx) wrote | #1 |
| description: | updated |
| description: | updated |
| Changed in timidity: | |
| status: | New → In Progress |
| Changed in timidity (Debian): | |
| status: | Unknown → Fix Released |
| Daniel van Vugt (vanvugt) wrote | #2 |
| Changed in timidity (Ubuntu): | |
| status: | New → Fix Released |
Looks like the Debian fix was released in cosmic.