GNOME Bugzilla – Bug 702486
Segfault on a corrupted (fuzzed) ods file in odf_annotation_end
Last modified: 2013-06-17 16:43:47 UTC
Segfault on a corrupted (fuzzed) ods file in odf_annotation_end. Git versions of glib, goffice, gnumeric, libgsf and libxml2. Test case: http://jutaky.com/fuzzing/gnumeric_case_15162_5635.ods Program received signal SIGSEGV, Segmentation fault. odf_annotation_end (xin=0x7fffffffdd80, blob=0x0) at openoffice-read.c:9164 9164 g_object_set (G_OBJECT (state->cell_comment), (gdb) bt
+ Trace 232081
-- Juha Kylmänen Research Assistant, OUSPG
This problem has been fixed in the development version. The fix will be available in the next major software release. Thank you for your bug report.