From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-il1-x147.google.com (mail-il1-x147.google.com [IPv6:2607:f8b0:4864:20::147]) by sourceware.org (Postfix) with ESMTPS id 6F9E13858C5F for ; Mon, 20 Feb 2023 22:19:05 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 6F9E13858C5F Authentication-Results: sourceware.org; dmarc=fail (p=none dis=none) header.from=chromium.org Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com Received: by mail-il1-x147.google.com with SMTP id v14-20020a92cd4e000000b0031570404cf1so598426ilq.1 for ; Mon, 20 Feb 2023 14:19:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=to:from:subject:message-id:references:reply-to:date:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=olxDZXdbucihykdxfry70bwsUt/OpG/Ruvl6bxKoeEI=; b=YpsnVBg6+G8omsVCPNi+3mq2MnrRDmqZj4nbtTZyTYqOq3m9raSoXX9kdQcQveGfwT fGgPdL4Qx+ZY6gHsLt5ZOND/14zVsXqDGMINhIs3jz+5sPTYsnDjfhJE3wp/KTQgGb6+ 57InmpAbMAZn4XQSgZnDg548/ocq4GS/oNkuw= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:from:subject:message-id:references:reply-to:date:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=olxDZXdbucihykdxfry70bwsUt/OpG/Ruvl6bxKoeEI=; b=vXddtNIpbAxTJYuEGvIUAL5Mo9u0qntCo7p8gTPTjA2aeNkG65PyMQdeRs/2nP4s1Z uEMxvyPf5dB7ggX/vs7Ha9oBgsiruh4diPTdccOVDpqOYm0bEM3ShYNz+KXmOxAbzo9E oMeb3XYq/z+cmpZtwg9q8EtYyf3o2ZgEbRQbmfP86M8Fkf45yVGhprk3pn3mYTiq8fKj BX0pme77Asu7YtmjOjAH3sjcQ5qhxc6QjmQBHb1y9nh/5lMGYuf4zQKOQl3JFcrQ40ZU FGoZxPWxbzCT4h074bS19Bailt9bKTAuIw5ZfePrdybs6U4JgPq9MyhgQ1S+ESV04Gqf u22g== X-Gm-Message-State: AO0yUKUnmdhwKNjbm8wJm8lExb5WN1fg+Xp90qooyHLUWmvIWgV4sA8A JkW7If31xpPEovXbc6BTikoVGuMYXSqLGPt3glVcdKKWz6H+q6U= X-Google-Smtp-Source: AK7set9Vwzi0/SCqamv264WsxmtuG6HdLGeqiLQI74tNeBLjFwNmgY3Pmtw1Or/2QvvFGWNR68SiQLMEGW97ePTp1ru6MA0Bja0T MIME-Version: 1.0 X-Received: by 2002:a05:6e02:130e:b0:310:c810:44c0 with SMTP id g14-20020a056e02130e00b00310c81044c0mr431611ilr.5.1676931544715; Mon, 20 Feb 2023 14:19:04 -0800 (PST) Date: Mon, 20 Feb 2023 14:19:04 -0800 Reply-To: oss-fuzz@monorail-prod.appspotmail.com References: <0=71cc74a7ba1af446b7ed6b9a08b414d9=22395f102ca761bf060b14d41a32d01f=oss-fuzz@monorail-prod.appspotmail.com> X-Google-Appengine-App-Id: s~monorail-prod X-Google-Appengine-App-Id-Alias: monorail-prod Message-ID: <000000000000091bb905f5290d8b@google.com> Subject: Issue 56179 in oss-fuzz: elfutils:fuzz-libdwfl: Use-of-uninitialized-value in check_section From: ClusterFuzz-External via monorail To: elfutils-devel@sourceware.org Content-Type: multipart/alternative; boundary="000000000000091ba105f5290d88" X-Spam-Status: No, score=-1.2 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,HTML_MESSAGE,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,TXREP autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: --000000000000091ba105f5290d88 Content-Type: text/plain; charset="UTF-8" Status: New Owner: ---- CC: elfut...@sourceware.org, da...@adalogics.com, evv...@gmail.com, izzeem@google.com Labels: ClusterFuzz Reproducible Stability-Memory-MemorySanitizer Engine-libfuzzer OS-Linux Security_Severity-Medium Proj-elfutils Reported-2023-02-20 Type: Bug-Security New issue 56179 by ClusterFuzz-External: elfutils:fuzz-libdwfl: Use-of-uninitialized-value in check_section https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56179 Detailed Report: https://oss-fuzz.com/testcase?key=6538272475316224 Project: elfutils Fuzzing Engine: libFuzzer Fuzz Target: fuzz-libdwfl Job Type: libfuzzer_msan_elfutils Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: check_section dwarf_begin_elf load_dw Sanitizer: memory (MSAN) Recommended Security Severity: Medium Regressed: https://oss-fuzz.com/revisions?job=libfuzzer_msan_elfutils&range=202302161800:202302181800 Reproducer Testcase: https://oss-fuzz.com/download?testcase_id=6538272475316224 Issue filed automatically. See https://google.github.io/oss-fuzz/advanced-topics/reproducing for instructions to reproduce this bug locally. When you fix this bug, please * mention the fix revision(s). * state whether the bug was a short-lived regression or an old bug in any stable releases. * add any other useful information. This information can help downstream consumers. If you need to contact the OSS-Fuzz team with a question, concern, or any other feedback, please file an issue at https://github.com/google/oss-fuzz/issues. Comments on individual Monorail issues are not monitored. -- You received this message because: 1. You were specifically CC'd on the issue You may adjust your notification preferences at: https://bugs.chromium.org/hosting/settings Reply to this email to add a comment. --000000000000091ba105f5290d88--