Bug#869891: pgpdump: infinite loop

Jakub Wilk Thu, 27 Jul 2017 05:21:44 -0700

Package: pgpdump
Version: 0.31-0.2

This command seems to hang forever:


  $ printf -- '-----BEGIN PGP\n\njAE00000IM0D' | pgpdump

Backtrace:

  #0  0xf7faf762 in BZ2_decompress () from /lib/i386-linux-gnu/libbz2.so.1.0
  #1  0xf7fb1296 in BZ2_bzDecompress () from /lib/i386-linux-gnu/libbz2.so.1.0
  #2  0x565597aa in inflate_bzip2 (p=0x56560060 <d_buf3> "\214\001\064\323M4 
\315\003", max=8192) at buffer.c:284
  #3  0x56559995 in Getc1 () at buffer.c:313
  #4  0x565578bf in parse_packet () at packet.c:300
  #5  0x565565e6 in main (argc=<optimized out>, argv=<optimized out>) at 
pgpdump.c:155

Found using American Fuzzy Lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Architecture: i386

Versions of packages pgpdump depends on:
ii  libbz2-1.0  1.0.6-8.1
ii  libc6       2.24-12
ii  zlib1g      1:1.2.8.dfsg-5

--
Jakub Wilk

Bug#869891: pgpdump: infinite loop

Reply via email to