Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released
Hi, I did a quick run with american fuzzy lop on libabw and it found the attached crasher. Attached both sample exposing segfault and asan/valgrind output. It's an invalid memory read access. As here are a lot of people working on import filters: These are very suspectible to these type of memory access errors and they can often easily be found with fuzzing. You may wanna have a look at https://fuzzing-project.org cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 libabw-segfault.tar.xz Description: application/xz pgpXKsoi9IIuD.pgp Description: OpenPGP digital signature ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice
Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released
On Sun, 21 Dec 2014 12:57:03 +1100 Chris Sherlock chris.sherloc...@gmail.com wrote: Do you have any instructions on how you went about doing that? I've finished now the three-part tutorial for the fuzzing project, you may find that helpful: https://fuzzing-project.org/tutorial1.html If you feel advanced you can directly skip to part 3 which is about afl (which is kind of the gold standard of fuzzing right now). -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 pgp94fVh1blRf.pgp Description: OpenPGP digital signature ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice
[ANN] libabw 0.1.1 has been released
List of changes: - Use symbol visibility on Linux. The library only exports the two public functions now. - Handle text language. - Honor global setting of writing mode. - Handle basic document metadata. - Handle headings. - Fix the loss of text formatting attributes that would happen in certain cases. - Several other smaller changes and improvements. Home page: https://wiki.documentfoundation.org/DLP/Libraries/libabw Download from: http://dev-www.libreoffice.org/src/libabw/ D. ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice
Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released
Hi, On Sat, Dec 20, 2014 at 05:44:50PM +0100, Hanno Böck wrote: Hi, I did a quick run with american fuzzy lop on libabw and it found the attached crasher. Attached both sample exposing segfault and asan/valgrind output. It's an invalid memory read access. This has already been found by coverity, but thanks anyway. As here are a lot of people working on import filters: These are very suspectible to these type of memory access errors and they can often easily be found with fuzzing. You may wanna have a look at https://fuzzing-project.org I know... I used zzuf on some of our libs in the past. And I have been using afl since I discovered it 4-5 weeks ago. I have already fixed over 20 crashes/hangs in various libraries, but I still have got more to go through. D. ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice
Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released
|Excelent!! https://github.com/cyberthrone/ https://launchpad.net/~alfierimorillo Ubuntu User number is # 35087 Public profile linux for user #97 alfieri.mori...@libreoffice-ve.net Web Master libreoffice-ve http://libreoffice-ve.org/ y Gimp-ve http://gimp-ve.com/ https://wiki.ubuntu.com/Alfierimorillo https://wiki.ubuntu.com/Alfieri Morillo La universidad es el refugio donde reprimen las ideas. Prohibido pensar, solo a repetir lo establecido sin pataleo. 2014-12-20 13:04 GMT-04:30 David Tardon dtar...@redhat.com: Hi, On Sat, Dec 20, 2014 at 05:44:50PM +0100, Hanno Böck wrote: Hi, I did a quick run with american fuzzy lop on libabw and it found the attached crasher. Attached both sample exposing segfault and asan/valgrind output. It's an invalid memory read access. This has already been found by coverity, but thanks anyway. As here are a lot of people working on import filters: These are very suspectible to these type of memory access errors and they can often easily be found with fuzzing. You may wanna have a look at https://fuzzing-project.org I know... I used zzuf on some of our libs in the past. And I have been using afl since I discovered it 4-5 weeks ago. I have already fixed over 20 crashes/hangs in various libraries, but I still have got more to go through. D. ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice
Re: [documentliberation-discuss] [ANN] libabw 0.1.1 has been released
Do you have any instructions on how you went about doing that? Chris Sent from my iPhone On 21 Dec 2014, at 4:34 am, David Tardon dtar...@redhat.com wrote: I know... I used zzuf on some of our libs in the past. And I have been using afl since I discovered it 4-5 weeks ago. I have already fixed over 20 crashes/hangs in various libraries, but I still have got more to go through. D. ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice ___ LibreOffice mailing list LibreOffice@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/libreoffice
