Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-89900

Integer-overflow in QTextHtmlImporter::scanTable

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • P3: Somewhat important
    • None
    • 5.15.2, 6.1
    • GUI: Text handling
    • Ubuntu 20.04 LTS
      clang 10.0.0
      Qt 5.15.2, Qt dev branch

    Description

      1. Have a build of Qt configured with "-sanitize undefined".
      2. Build the attached project.
      3. Run the resulting program and pass the input file: 
        ./report 26123.html

        You will see output like:

        /src/qt/qtbase/src/gui/text/qtextdocumentfragment.cpp:996:23: runtime error: signed integer overflow: 2147483647 + 40 cannot be represented in type 'int'

      Found by oss-fuzz as issue 26123.

      Attachments

        1. 26123.html
          0.0 kB
          Robert Löhning
        2. main.cpp
          0.2 kB
          Robert Löhning
        3. report.pro
          0.1 kB
          Robert Löhning
        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            esabraha Eskil Abrahamsen Blomfeldt
            rlohning Robert Löhning
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:

              Gerrit Reviews

                There are no open Gerrit changes