OpenSolaris

Printable Version Enter a New Search
Bug ID 6509763
Synopsis *bdftopcf* dumps core on stdin fuzz testing
State 10-Fix Delivered:Verified (Fix available in build)
Category:Subcategory xserver:font
Keywords fuzz | gse-sec-team
Responsible Engineer Alan Coopersmith
Reported Against snv_55
Duplicate Of
Introduced In
Commit to Fix snv_71
Fixed In snv_71
Release Fixed solaris_nevada(snv_71)
Related Bugs 6582224 , 6582231
Submit Date 4-January-2007
Last Update Date 12-June-2008
Description 
As part of a project to perform Fuzz Testing against the Solaris OS, a problem
was found with this program.  During one or more tests, this program dumped
core when the test file was provided as input to the program using syntax such
as: 

$ program < testfile

The core and test files for each of the relevant failures have been attached
to this bug report so that the tests can be repeated/validated.
Fix committed to X.Org upstream:

http://gitweb.freedesktop.org/?p=xorg/app/bdftopcf.git;a=commit;h=608915a471c5a7a1cc3ecca19fc1b516480f439f
*** Test Case ***
Run:  /usr/openwin/bin/bdftopcf < /dev/zero
It should print an error message and exit, but not segmentation fault/core dump.

Error should look like:
BDF Error on line 0: bad 'STARTFONT'
bdftopcf: bdf input, <stdin>, corrupt
Work Around 
N/A
Comments 
N/A