diff options
| -rw-r--r-- | README.md | 23 | ||||
| -rw-r--r-- | bugs/cve-2016-9557/reproducer | bin | 0 -> 444 bytes | |||
| -rw-r--r-- | loftix/bugs.scm | 18 |
3 files changed, 41 insertions, 0 deletions
diff --git a/README.md b/README.md index 557dbf8..b8f9e4c 100644 --- a/README.md +++ b/README.md @@ -35,9 +35,32 @@ Then run `guix pull`. - [python-pacfix]: PAC-learning-based program systhesizer +### Bugs + +#### CVE-2016-9557 + +[Signed integer overflow in jas_image.c][jasper-d42b238] + + guix shell jasper@1.900.19 -- imginfo -f bugs/cve-2016-9557/reproducer + +#### CVE-2017-14745 + +[Integer overflow in elf64-x86-64.c, binutils 2.29.1][sourceware-22148] + + guix shell binutils@2.29 -- objdump -d bugs/cve-2017-14745/crash_1 + +#### CVE-2017-15025 + +[Divide-by-zero in decode_line_info (dwarf2.c)][sourceware-22186] + + guix shell binutils@2.29 -- nm -l bugs/cve-2017-15025/3899.crashes.bin + [Guix channel]: https://guix.gnu.org/manual/devel/en/html_node/Channels.html [AFLRun]: https://trong.loang.net/~cnx/afl++/log?h=run [AFL++]: https://github.com/AFLplusplus/AFLplusplus [afl-dyninst]: https://trong.loang.net/~cnx/afl-dyninst/about [e9patch]: https://github.com/GJDuck/e9patch [python-pacfix]: https://github.com/hsh814/pacfix-python +[sourceware-22148]: https://sourceware.org/bugzilla/show_bug.cgi?id=22148 +[sourceware-22186]: https://sourceware.org/bugzilla/show_bug.cgi?id=22186 +[jasper-d42b238]: https://blogs.gentoo.org/ago/2016/11/19/jasper-signed-integer-overflow-in-jas_image-c diff --git a/bugs/cve-2016-9557/reproducer b/bugs/cve-2016-9557/reproducer new file mode 100644 index 0000000..db0b961 --- /dev/null +++ b/bugs/cve-2016-9557/reproducer Binary files differdiff --git a/loftix/bugs.scm b/loftix/bugs.scm index ec3d424..e4dcf7b 100644 --- a/loftix/bugs.scm +++ b/loftix/bugs.scm @@ -18,6 +18,9 @@ (define-module (loftix bugs) #:use-module (gnu packages base) + #:use-module (gnu packages image) + #:use-module (guix build-system gnu) + #:use-module (guix download) #:use-module (guix packages)) (define-public binutils-2.29 @@ -31,3 +34,18 @@ (sha256 (base32 "1gqfyksdnj3iir5gzyvlp785mnk60g1pll6zbzbslfchhr4rb8i9")) (patches '()))))) + +(define-public jasper-1.900.19 + (package + (inherit jasper) + (name "jasper") + (version "1.900.19") + (source (origin + (method url-fetch) + (uri (string-append "https://www.ece.uvic.ca/~frodo/jasper" + "/software/jasper-" version ".tar.gz")) + (sha256 + (base32 + "0dm3k0wdny3s37zxm9s9riv46p69c14bnn532fv6cv5b6l1b0pwb")))) + (build-system gnu-build-system) + (inputs '(ijg-libjpeg)))) |