Package: xfpt Version: 0.10-1 Severity: normal Tags: upstream Dear Maintainer, running xfpt with the attached file leads to an invalid read of size 1.
This is the valgrind output: ==8== Memcheck, a memory error detector ==8== Copyright (C) 2002-2017, and GNU GPL'd, by Julian Seward et al. ==8== Using Valgrind-3.14.0 and LibVEX; rerun with -h for copyright info ==8== Command: ./xfpt/xfpt-0.10/build-debian/bin/xfpt -o /dev/null ./xfpt/filtered_crashes/00_invalid_read ==8== [...] ==8== Invalid read of size 1 ==8== at 0x10D367: read_process_macroline (read.c:101) ==8== by 0x10D64F: read_nextline (read.c:244) ==8== by 0x10D64F: read_nextline (read.c:182) ==8== by 0x10A3CC: main (xfpt.c:170) ==8== Address 0x4a51a3d is 0 bytes after a block of size 29 alloc'd ==8== at 0x483577F: malloc (vg_replace_malloc.c:299) ==8== by 0x10C480: misc_malloc (misc.c:90) ==8== by 0x10C4C3: misc_copystring (misc.c:111) ==8== by 0x10AF35: do_macro (dot.c:492) ==8== by 0x10BDE3: dot_process (dot.c:833) ==8== by 0x10A4DC: main (xfpt.c:172) ==8== ==8== Invalid read of size 1 ==8== at 0x10D3A1: read_process_macroline (read.c:104) ==8== by 0x10D64F: read_nextline (read.c:244) ==8== by 0x10D64F: read_nextline (read.c:182) ==8== by 0x10A3CC: main (xfpt.c:170) ==8== Address 0x4a51a3e is 1 bytes after a block of size 29 alloc'd ==8== at 0x483577F: malloc (vg_replace_malloc.c:299) ==8== by 0x10C480: misc_malloc (misc.c:90) ==8== by 0x10C4C3: misc_copystring (misc.c:111) ==8== by 0x10AF35: do_macro (dot.c:492) ==8== by 0x10BDE3: dot_process (dot.c:833) ==8== by 0x10A4DC: main (xfpt.c:172) ==8== [...] ==8== HEAP SUMMARY: ==8== in use at exit: 49,286 bytes in 2,134 blocks ==8== total heap usage: 2,793 allocs, 659 frees, 101,709 bytes allocated ==8== ==8== LEAK SUMMARY: ==8== definitely lost: 0 bytes in 0 blocks ==8== indirectly lost: 0 bytes in 0 blocks ==8== possibly lost: 0 bytes in 0 blocks ==8== still reachable: 49,286 bytes in 2,134 blocks ==8== suppressed: 0 bytes in 0 blocks ==8== Rerun with --leak-check=full to see details of leaked memory ==8== ==8== For counts of detected and suppressed errors, rerun with: -v ==8== ERROR SUMMARY: 3 errors from 2 contexts (suppressed: 0 from 0) -- System Information: Debian Release: 10.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 5.4.0-42-generic (SMP w/12 CPU cores) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: unable to detect Versions of packages xfpt depends on: ii libc6 2.28-10 xfpt recommends no packages. xfpt suggests no packages. -- no debconf information
00_invalid_read
Description: Binary data
