Null pointer dereference at GooString.h:134
pdfdetch
version
The latest stable release poppler-0.71.0.tar.xz, released on Oct 31, 2018
others
this bug is reported by pwd@360TeamSeri0us, please send email to teamSeri0us360@gmail.com if you have any questions.
Test Target
./pdfdetch --save 1 NullPointerDeference_GooString.h_134
Asan info
Syntax Error: Unterminated hex string
Syntax Error (8586): Illegal character <2f> in hex string
Syntax Error (8587): Illegal character <58> in hex string
Syntax Error (8588): Illegal character <4f> in hex string
Syntax Error (8590): Illegal character <6a> in hex string
Syntax Error (8590): Illegal character <74> in hex string
Syntax Error (8591): Illegal character <3c> in hex string
Syntax Error (8591): Illegal character <3c> in hex string
Syntax Error (8591): Illegal character <2f> in hex string
Syntax Error (8593): Illegal character <58> in hex string
Syntax Error (8594): Illegal character <58> in hex string
Syntax Error (8598): Illegal character <52> in hex string
Syntax Error (8601): Illegal character '>'
Syntax Error: Invalid FileSpec
AddressSanitizer:DEADLYSIGNAL
=================================================================
==29796==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x00000051cd35 bp 0x7ffdbd047560 sp 0x7ffdbd046ea0 T0)
==29796==The signal is caused by a READ memory access.
==29796==Hint: address points to the zero page.
#0 0x51cd34 in std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::_M_data() const /usr/lib/gcc/x86_64-linux-gnu/7.3.0/../../../../include/c++/7.3.0/bits/basic_string.h:176:28
#1 0x51cd34 in std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::operator[](unsigned long) const /usr/lib/gcc/x86_64-linux-gnu/7.3.0/../../../../include/c++/7.3.0/bits/basic_string.h:1030
#2 0x51cd34 in GooString::getChar(int) const /home/pwd/fuzz/fuzz-poppler/poppler-0.71.0/goo/GooString.h:134
#3 0x51cd34 in main /home/pwd/fuzz/fuzz-poppler/poppler-0.71.0/utils/pdfdetach.cc:274
#4 0x7fc118513b96 in __libc_start_main /build/glibc-OTsEL5/glibc-2.27/csu/../csu/libc-start.c:310
#5 0x41b4f9 in _start (/home/pwd/fuzz/fuzz-poppler/poppler-0.71.0/installed-asan/bin/pdfdetach+0x41b4f9)
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV /usr/lib/gcc/x86_64-linux-gnu/7.3.0/../../../../include/c++/7.3.0/bits/basic_string.h:176:28 in std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::_M_data() const
==29796==ABORTING
src
// Get <i>th character.
char getChar(int i) const { return (*this)[i]; } //line 134, file Goostring.h
//at the lastest hint, "this" is NULL