Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 17 Oct 2016 09:30:49 +0200
From: Agostino Sarubbo <ago@...too.org>
To: Hanno Böck <hanno@...eck.de>
Cc: Graham Christensen <graham@...hamc.com>, oss-security@...ts.openwall.com, cve-assign@...re.org
Subject: Re: Re: Fuzzing jasper

On Monday 17 October 2016 01:02:45 Hanno Böck wrote:
> I tested the code again with afl (after the fixes for the stuff
> Agostino reported) and it immediately found multiple issues:

Great job. I also was waiting for the next release to re-fuzz

> https://github.com/mdadams/jasper/issues/31
> double free on jpeg parsing

This is a duplicate of the double-free I reported, but upstream 
said that he can't reproduce.

--
Agostino

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ