Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue 24530 in oss-fuzz: assimp:assimp_fuzzer: Integer-overflow in Assimp::strtol10 #3424

Closed
kimkulling opened this issue Oct 6, 2020 · 0 comments · Fixed by #5068
Closed

Issue 24530 in oss-fuzz: assimp:assimp_fuzzer: Integer-overflow in Assimp::strtol10 #3424

kimkulling opened this issue Oct 6, 2020 · 0 comments · Fixed by #5068
Labels
Bug Global flag to mark a deviation from expected behaviour Fuzzer Bugs found by a fuzzer
Projects
Planning for Release V5.1
Milestone
Release 5.1

Comments

@kimkulling
Copy link
Member

Describe the bug
New issue 24530 by ClusterFuzz-External: assimp:assimp_fuzzer: Integer-overflow in Assimp::strtol10
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24530

To Reproduce
Detailed Report: https://oss-fuzz.com/testcase?key=5191554273378304

Project: assimp
Fuzzing Engine: libFuzzer
Fuzz Target: assimp_fuzzer
Job Type: libfuzzer_ubsan_assimp
Platform Id: linux

Crash Type: Integer-overflow
Crash Address:
Crash State:
Assimp::strtol10
Assimp::DXF::LineReader::operator++
Assimp::DXFImporter::InternReadFile

Sanitizer: undefined (UBSAN)

Crash Revision: https://oss-fuzz.com/revisions?job=libfuzzer_ubsan_assimp&revision=202007300626

Reproducer Testcase: https://oss-fuzz.com/download?testcase_id=5191554273378304

Issue filed automatically.

See https://google.github.io/oss-fuzz/advanced-topics/reproducing for instructions to reproduce this bug locally.
When you fix this bug, please

  • mention the fix revision(s).
  • state whether the bug was a short-lived regression or an old bug in any stable releases.
  • add any other useful information.
    This information can help downstream consumers.

If you need to contact the OSS-Fuzz team with a question, concern, or any other feedback, please file an issue at https://github.com/google/oss-fuzz/issues. Comments on individual Monorail issues are not monitored.

Expected behavior
No crash

Desktop (please complete the following information):

  • Linux
@kimkulling kimkulling added Bug Global flag to mark a deviation from expected behaviour Fuzzer Bugs found by a fuzzer labels Oct 6, 2020
@kimkulling kimkulling added this to the Release 5.1 milestone Feb 18, 2021
kimkulling added a commit that referenced this issue Apr 17, 2023
@kimkulling
Fix: Avoid integer overflow in inversion op
d51f033 
- closes #3424
@kimkulling kimkulling mentioned this issue Apr 17, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug Global flag to mark a deviation from expected behaviour Fuzzer Bugs found by a fuzzer
Projects
The Asset-Importer-Lib Kanban Board
Archived in project
Planning for Release V5.1
  
Backlog
Milestone
Release 5.1
Development

Successfully merging a pull request may close this issue.

Fix: Avoid integer overflow in inversion operation assimp/assimp
1 participant
@kimkulling