search

stcorp / coda

The Common Data Access toolset
http://stcorp.github.io/coda/doc/html/index.html
BSD 3-Clause "New" or "Revised" License
39 stars 17 forks source link

coda_recognize_file_fuzzer: Direct-leak in coda_mem_record_new #50

Closed schwehr closed 4 years ago

schwehr commented 4 years ago

Reproduces at 06fa8abaf974355dff9822817b19c80080eeca2d

#1 0x558891712f75 in coda_mem_record_new /proc/self/cwd/third_party/stcorp_coda/libcoda/coda-mem-type.c:438:31
--
  | #2 0x5588916ddddf in coda_grib_reopen /proc/self/cwd/third_party/stcorp_coda/libcoda/coda-grib.c:3092:25
  | #3 0x55889172035b in reopen_with_backend /proc/self/cwd/third_party/stcorp_coda/libcoda/coda-product.c:408:17
  | #4 0x55889171d148 in open_file /proc/self/cwd/third_party/stcorp_coda/libcoda/coda-product.c:550:9
  | #5 0x55889171ca8a in coda_recognize_file /proc/self/cwd/third_party/stcorp_coda/libcoda/coda-product.c:594:9
  | #6 0x558891633291 in LLVMFuzzerTestOneInput /proc/self/cwd/third_party/stcorp_coda/fuzz/coda_recognize_file_fuzzer.cc:19:3

testcase-5911428917100544-936c5358e3fc46c11d68.zip

svniemeijer commented 4 years ago

Should be fixed in b217fd13b4e967b3d40d7d50b6e1b64547aa5200

schwehr commented 4 years ago

I will close this issue when I see cluster-fuzz close the issue as non-reproducible with the testcase.

svniemeijer commented 4 years ago

Just reopen if you still see the issue.

schwehr commented 4 years ago

It verified that the test case no longer reproduces.