Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: P1: Critical
Fix Version/s: 5.12.12, 5.15.8, 6.2.2, 6.3.0 Alpha
Affects Version/s: 5.12.9, 6.2.0 Beta2
Component/s: SVG Support
Labels:
- found_by_oss-fuzz
Environment:
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS
clang 7.0.0, clang 10.0.0, g++ 7.5.0, g++ 9.3.0

Commits:
e544d8e457d52b543cae5c988f81237c7d6608da (qt/qtsvg/dev) 124536b7d40c3fbfe2f827ef8ca5410c399142d7 (qt/qtsvg/6.2) 2f369e9110afa70417691906ad637acf7542738b (qt/tqtc-qtsvg/5.15) 85485845bdf502674edf4d5b840f0194e62da7bb (qt/qtsvg/5.12)

Description

Have a build of Qt including qtsvg.
No sanitizers needed.
Build the attached project.
Run the resulting program and pass the input file.
```
./report 23699.svg
```
This will fully occupy a CPU core and won't return (at least not in 20 minutes).

Google's oss-fuzz found this as issue 23699

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

23699.svg
0.3 kB
18 Aug '21 17:24
main.cpp
0.2 kB
18 Aug '21 17:23
report.pro
0.1 kB
18 Aug '21 17:23

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Eirik Aavitsland

Reporter:: Robert Löhning

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 18 Aug '21 17:42

Updated:: 11 Jan '22 10:47

Resolved:: 08 Nov '21 15:20

Gerrit Reviews

There are no open Gerrit changes

Show There are 4 closed Gerrit changes

Hide There are 4 closed Gerrit changes

SVG Image reading: Reject oversize svgs as corrupt: Gerrit Review:

SVG Image reading: Reject oversize svgs as corrupt: Gerrit Review:

SVG Image reading: Reject oversize svgs as corrupt: Gerrit Review:

SVG Image reading: Reject oversize svgs as corrupt: Gerrit Review: