SEGV in MagickCore/memory.c:974
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ImageMagick |
Fix Released
|
Unknown
|
|||
imagemagick (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This bug was found while fuzzing ImageMagick with afl-fuzz
Tested on ImageMagick git commit %s
Command: magick id:000004,
ASAN:SIGSEGV
=======
==18636==ERROR: AddressSanitizer: SEGV on unknown address 0x00ecfeef (pc 0x080839f2 sp 0xbfd20580 bp 0xbfd20610 T0)
#0 0x80839f1 in __asan:
#1 0x80839a3 in __asan:
#2 0x80c6a61 in __interceptor_free (/usr/local/
#3 0x818d2e8 in RelinquishMagic
#4 0x82c0fc6 in DestroySplayTree /home/user/
#5 0x819ce1f in DestroyImageOptions /home/user/
#6 0x8105132 in DestroyImageInfo /home/user/
#7 0x80ffe67 in DestroyImage /home/user/
#8 0x813321c in DeleteImageFromList /home/user/
#9 0x813321c in DestroyImageList /home/user/
#10 0x87f79b3 in ReadSUNImage /home/user/
#11 0x8a8ad6a in ReadImage /home/user/
#12 0x8a92bdf in ReadImages /home/user/
#13 0x9375c09 in CLINoImageOperator /home/user/
#14 0x937e0f1 in CLIOption /home/user/
#15 0x910ae9d in ProcessCommandO
#16 0x910e215 in MagickImageCommand /home/user/
#17 0x91126f9 in MagickCommandGe
#18 0x80de16d in MagickMain /home/user/
#19 0x80de16d in main /home/user/
#20 0xb7475a82 in __libc_start_main /build/
#21 0x80ddf94 in _start (/usr/local/
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV ??:0 __asan:
==18636==ABORTING
Changed in imagemagick (Ubuntu): | |
status: | New → Confirmed |
Changed in imagemagick (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in imagemagick: | |
status: | Unknown → Fix Released |
input file to trigger crash