bug-parted
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#23549: parted needs to be afl-fuzzed (crash found on Debian, 3.2-15)

From: Jacek Wielemborek
Subject: bug#23549: parted needs to be afl-fuzzed (crash found on Debian, 3.2-15)
Date: Mon, 16 May 2016 14:03:43 +0200 
Hello,

The following base64-encoded device crashes parted 3.2 on "print all":
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Here's an archive of input files I started fuzzing with:

H4sIAB21OVcAA+3VT2xURRgA8NlNBSOKJEbicSR48dJ9r7tvvRlCipAQg6RF
DxystEqluGb/kBg51JJw0IQ70XDyIuVADAeMUD0YbxrDyRDizQOQcJCbJq1v
/0AsCS1pu2DT32/z9pv9Zt7Mt2+SeZPpYOi3Uq5aqXRi7sHYaSdpNcmG0mpW
zfNJ+xNipe+V5VqN5lg9xlCv1ZpLjVuuf52aTAffn5ya6Osa7Q3OyuWH7X/6
n/3PKpWsvf/VoUqIpb5W1bPB9//vy2Hbmd+uhIuXQzjz+5kf/5kLJ38Im74L
xbtf33p5Uwhzc5tfG2htOfXzts/m5ze37t7efql4sfB9OPnt9OfNwhf7i7+8
cCucDOH2/JP+KxvKV1dO/NSOxXAqvwp5q7CCWUbPr21VrDf5+f/Bx30+2JY8
/5NStuj9n7/4OznnPyyrEO7MLyy0z/7hFdw9en54z754YNfBkfZMh/PM678+
P9Wdt+verDt6cWcvXho9e33vhRv7z92Mx6425maLvfx07zp9bWR2BQUBAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAYzG8Z188sOvgSAiFcDj/
/epbu5/p5Hv9hV7c0Ys7e/HS6Nnrey/c2H/uZjx2tTE3+0ovP927Tl8bme1/
9azWZDrYaH3U3zVKuaxc7sTc4piUsnY7SatJNpRW8yu0c2k5xFJ/y+pqNZpj
9RhDvVZrLjVuuf516o03R+OBsXpzYjzuzh9F7Xg88slULMWxqWb+fXQ8lmNj
4kjMd6VvCvdbT99vPfUoN7773B931r6c/58XX7rf7D6rgRDXYt7rc8c/XIt5
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaTyXRw/MTR/q5R
ymXlcifmFseklLXbSVpNsqG0mmVZ6OSqIZb6W1ZXq9Ecq8cY6rVac6lxy/Wv
U1v+/GbXQu6hAwY637H4uArinj3L5DetZvK/th/aupr7AQAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAANaryXTwvcZ4f9co5bJyuRNzi2NSytrt
JK0m2VBarab5uKRUqSYhlvpbVler0RyrxxjqtVpzqXHL9W9Qbw8fmhl4lIHF
EGIe7o2dfqB729bCqmq4+Gyhu0Bc8TQbypcz78x8OnFo5knXAQAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALBa/wLdzr7yAFgCAA==

I used my afl-sid project [1] to generate the ASAN-augmented build and
the following command line to find a crash in 20 minutes:

afl-fuzz -d -i i2 -o o -m none -- parted -s @@ print all

I couldn't reproduce the crash on Fedora 23 (3.26-16).

Let me know if you need any more help fuzzing - I'll be happy to help.

Cheers,
d33tah

[1] https://github.com/d33tah/aflize

Attachment: signature.asc
Description: OpenPGP digital signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]