Open jbowler opened 1 month ago
ctruta
commented
1 month ago My bad: I should have known better: I should have deleted contrib/oss-fuzz/ after publishing the brand new and especially shiny pngfuzz repo. My original plan was to actually publish that repo, immediately after the deletion... but...
I keep my fingers crossed that I'll be able to do it tomorrow 🤞 after the announcement of the brand new and especially shiny libpng branch.
ctruta
commented
1 month ago I keep my fingers crossed that I'll be able to do it tomorrow 🤞 after the announcement of the brand new and especially shiny libpng branch.
As it turned out: no.
So I reverted both commits that I had applied since libpng-1.6.43. See https://github.com/pnggroup/libpng/commit/cd5e582fd6217fad4a2f5b1535089f328318335a and https://github.com/pnggroup/libpng/commit/529e69e76a82af577cd2871db7da1ab3c7a0aaf7
@jbowler you may close this issue.
[To summarize briefly (it's fairly obvious):]
(https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71681)
I don't know about the new fuzzing support but the commit message is fairly clear;
https://github.com/pnggroup/libpng/commit/b7276eca0182bb6ad174ef044bb5f6f0504451af
More details from the maintainer I assume, but I suggest direct communication. I don't have any access to that repo (it's probably private.)
Then: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=71387
You are also sending messages to an email without telling me what email you used, I thought it was oss-fuzz@jbowler.com but I tried accessing the reports for Issue 71387 and was completely unable to get anywhere, I even created a gmail account to try to access them (ClusterFuzzy@gmail.com, I figured that was more acceptable than the one they're using.)