SEGV in ImageMagick/MagickCore/locale.c:1517
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
imagemagick (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This bug was found while fuzzing ImageMagick with afl-fuzz
Tested on ImageMagick git commit <unknown>
Command: magick id:000359,
ASAN:SIGSEGV
=======
==4985==ERROR: AddressSanitizer: SEGV on unknown address 0xa13fa11c (pc 0x0808c946 sp 0xbff94780 bp 0xbff947c8 T0)
#0 0x808c945 in strncasecmp (/usr/local/
#1 0x814fe14 in LocaleNCompare /home/user/
#2 0x82857c5 in WriteTo8BimProfile /home/user/
#3 0x8284fac in DeleteImageProfile /home/user/
#4 0x89e9ec4 in TransformImageC
#5 0x873f635 in WritePSDImage /home/user/
#6 0x8a6b5b8 in WriteImage /home/user/
#7 0x8a6ef9c in WriteImages /home/user/
#8 0x92af4ff in CLINoImageOperator /home/user/
#9 0x92b7311 in CLIOption /home/user/
#10 0x9045373 in ProcessCommandO
#11 0x90477f5 in MagickImageCommand /home/user/
#12 0x904bcd9 in MagickCommandGe
#13 0x80de16d in MagickMain /home/user/
#14 0x80de16d in main /home/user/
#15 0xb7517a82 in __libc_start_main /build/
#16 0x80ddf94 in _start (/usr/local/
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV ??:0 strncasecmp
==4985==ABORTING
input file to trigger crash