Segfault on malformed zip files

[GoogleCodeExporter]

I'm attaching these all to one bug, although I'm not sure if this is all the 
same bug. All three attached files will cause a segfault in the function 
process_extra. But the call traces are different.
variant3 doesn't segfault without address sanitizer.

I've attached the crashing files and address sanitizer output. All found with 
american fuzzy lop.

Original issue reported on code.google.com by hanno@hboeck.de on 7 Feb 2015 at 11:04

Attachments:

• bsdtar-zip-crash-variant1.zip
• bsdtar-zip-crash-variant1.zip.asan.txt
• bsdtar-zip-crash-variant2.zip
• bsdtar-zip-crash-variant2.zip.asan.txt
• bsdtar-zip-crash-variant3.zip
• bsdtar-zip-crash-variant3.zip.asan.txt

[GoogleCodeExporter]

I believe this is completely fixed in git commit 9e0689c

Thank you again for your help!

Original comment by kientzle@gmail.com on 8 Feb 2015 at 8:51

• Changed state: Fixed