Ubuntu
jhead package

over read

Bug #1921304 reported by XiaoyuHe on 2021-03-25

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	jhead (Ubuntu)	New	Undecided	Unassigned

Bug Description

# enviroment
ubuntu 18.04
./jhead poc

# version
3.04

# asan out
ASAN:DEADLYSIGNAL
=================================================================
==10836==ERROR: AddressSanitizer: SEGV on unknown address 0x624000052108 (pc 0x55bba233d316 bp 0x0fff9bb96ac2 sp 0x7ffcddcb5570 T0)
==10836==The signal is caused by a READ memory access.
    #0 0x55bba233d315 in ProcessGpsInfo gpsinfo.c:122
    #1 0x55bba232f4d5 in ProcessExifDir exif.c:866
    #2 0x55bba233095a in process_EXIF exif.c:1041
    #3 0x55bba231c382 in ReadJpegSections jpgfile.c:287
    #4 0x55bba231d90e in ReadJpegSections jpgfile.c:126
    #5 0x55bba231d90e in ReadJpegFile jpgfile.c:379
    #6 0x55bba231366c in ProcessFile jhead.c:905
    #7 0x55bba230eb2e in main jhead.c:1756
    #8 0x7f785c448bf6 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x21bf6)
    #9 0x55bba2311279 in _start (/home/fuzz/jhead-3.04/jhead+0x12279)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV gpsinfo.c:122 in ProcessGpsInfo
==10836==ABORTING

Revision history for this message

XiaoyuHe (hello0011) wrote on 2021-03-25:

poc4 Edit (7.0 KiB, application/octet-stream)

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

poc4 Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntujhead package