[cups-devel] [UNKN] STR #4627: Both /usr/bin/ppdpo and /usr/bin/ppdhtml dump core with fuzz input
vishwas s g
noreply at cups.org
Thu May 7 21:52:11 PDT 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
DO NOT REPLY TO THIS MESSAGE. INSTEAD, POST ANY RESPONSES TO THE LINK BELOW.
[STR New]
/usr/bin/ppdpo and /usr/bin/ppdhtml dump core if an argument starting with
almost any character(not reproducible with ')', '(', and '&') is passed to
the -D option.
It's reproducible on both sparc and X64.
Steps to reproduce:
# /usr/bin/ppdpo -D "almost any character"
Expected result:
Core is not dumped
Actual result:
process terminated by SIGSEGV (Segmentation Fault)
Link: https://www.cups.org/str.php?L4627
Version: 2.0.2
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: GPGTools - https://gpgtools.org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=l8du
-----END PGP SIGNATURE-----
More information about the cups
mailing list