Ubuntu
libhdf4 package

Hdp for hdf4-tools null pointer dereference

Bug #1915430 reported by Andrey Fedotov
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libhdf4 (Ubuntu)
New
Undecided
Unassigned

Bug Description

Hello,
Below is some description about crash, found by dynamic analysis tool Sydr (part of Crusher system) https://www.ispras.ru/en/technologies/sydr/ developed in ISP RAS.

Dereference is occured at HDstrcmp function at cdf.c:1969

Starting program: /home/fedotoff/hdp-test/hdp-crash/libhdf4-4.2.14/install/bin/hdp dumpsds ./segfault19.hdf

Breakpoint 1, hdf_read_dims (xdrs=0x5193a0, handle=0x518330, vg=805306368) at cdf.c:1814
1814 char vgname[H4_MAX_NC_NAME] = "";
(gdb) c
Continuing.

Breakpoint 2, hdf_read_dims (xdrs=0x5193a0, handle=0x518330, vg=805306368) at cdf.c:1969
1969 if (!HDstrcmp(vgname, dimension[i]->name->values) &&
(gdb) c
Continuing.

Breakpoint 2, hdf_read_dims (xdrs=0x5193a0, handle=0x518330, vg=805306368) at cdf.c:1969
1969 if (!HDstrcmp(vgname, dimension[i]->name->values) &&
(gdb) p vgname
$5 = "fakeDim2", '\000' <repeats 247 times>
(gdb) p dimension[i]->name->values
$6 = 0x0

Continuing.

Program received signal SIGSEGV, Segmentation fault.
0x00007ffff7d6db82 in ?? () from /usr/lib/x86_64-linux-gnu/libc.so.6

Revision history for this message
Andrey Fedotov (fedotoff) wrote :
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.