| Summary: | [pdftohtml] Segfault in GfxState.cc:5878 | ||
|---|---|---|---|
| Product: | poppler | Reporter: | MH <ravdune+bugzilla> |
| Component: | utils | Assignee: | poppler-bugs <poppler-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | |
| Severity: | normal | ||
| Priority: | medium | CC: | fdo-bugs, hanno |
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | All | ||
| Whiteboard: | |||
| i915 platform: | i915 features: | ||
| Attachments: |
segfault-GfxState.cc:5878.pdf
67-unfuzzed.pdf |
||
Created attachment 108337 [details]
67-unfuzzed.pdf
Attached unfuzzed file as per request.
This seems to have been fixed a while back, at least can't reproduce anymore with the git version. |
Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.
Created attachment 108336 [details] segfault-GfxState.cc:5878.pdf OS: Fedora 20 (running in virtualbox) Dependencies installed with: yum-builddep poppler Version: GIT Master Command line for loop demonstration: mkdir out master/utils/pdftohtml <attached.pdf> out/out ############################################################################# GDB output: Reading symbols from /home/foobar/poppler/utils/.libs/lt-pdftohtml...done. Starting program: /home/foobar/poppler/utils/.libs/lt-pdftohtml segfault-gfxstate.cc-5878-67-pdftohtmlfuzz-11.pdf out/out Bogus memory allocation size Program received signal SIGSEGV, Segmentation fault. GfxImageColorMap::getRGB (this=this@entry=0x6563f0, x=x@entry=0x0, rgb=rgb@entry=0x7fffffffd610) at GfxState.cc:5878 5878 color.c[i] = lookup2[i][x[i]];