--nextPart1467927.QGixNVcJTV
Content-Type: text/plain;
charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
I've also posted this to my blog:
http://hboeck.de/archives/578-How-long-does-it-take-to-fix-a-crash-bug.html
=20
About one year ago, Sam Hocevar posted some results on tests with his fuzz=
ing=20
tool zzuf, which showed a large number of crashes in various applications,=
=20
especially multimedia apps.
http://sam.zoy.org/blog/2007-01-16-exposing-file-parsing-vulnerabilities
http://sam.zoy.org/zzuf/
Crash bugs on invalid input very often lead to security issues, thus this=
=20
should be taken seriously.
=20
Now, I took the freedom to have a look how many of the issues found back t=
hen=20
were fixed. I used the most current versions in gentoo linux=20
(testing/~x86-system), which tend to be quite up-to-date. I also=20
cross-checked the crashes for other apps, as they often use the same or=20
similar code.
Seems only vlc devs did their homework (Sam Hocevar is part of the vlc tea=
m).=20
Interesting enough, even firefox seems to have a gif-crasher since a year.
=20
gstreamer crash by lol-ffplay.mpg lol-gstreamer.m2v lol-mplayer.m2v=20
lol-mplayer.mpg lol-vlc.m2v lol-vlc.mpg=20
endless loop by lol-ffplay.m2v lol-xine.mpg
=20
mplayer hang by lol-mplayer.wmv,
crash by lol-ffplay.flac lol-mplayer.aac lol-mplayer.mpg lol-mplayer.ogg=20
lol-ogg123.flac lol-vlc.aac lol-xine.aac
=20
xine crash by lol-mplayer.wmv lol-ffplay.m2v lol-ffplay.ogg lol-ffplay.wmv=
=20
lol-gstreamer.avi lol-ogg123.flac lol-vlc.aac lol-xine.mpg
=20
firefox crash by lol-firefox.gif
=2D-=20
Hanno B=C3=B6ck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail: hanno@hboeck.de
--nextPart1467927.QGixNVcJTV
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.8 (GNU/Linux)
iEYEABECAAYFAkeG+VwACgkQr2QksT29OyC1rwCfcIjSZv4pc+9qy5Wt+IO9NLfR
jU0Anj0Ne+gMh6jU4986tCTLy692/OFK
=gg5m
-----END PGP SIGNATURE-----
--nextPart1467927.QGixNVcJTV--