mir/libreoffice
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

oss-fuzz: xlsxfuzzer doesn't pass sanity check

Browse Source 
Step #5:     #6 0xc1f47cf in __cxa_throw (/tmp/not-out/xlsxfuzzer+0xc1f47cf)
Step #5:     #7 0x4602309 in SvStream::ReadUInt32(unsigned int&) (/tmp/not-out/xlsxfuzzer+0x4602309)
Step #5:     #8 0x33d288f in ReadClsId(SvStream&, SvGUID&) (/tmp/not-out/xlsxfuzzer+0x33d288f)
Step #5:     #9 0x33d328d in StgHeader::Load(SvStream&) (/tmp/not-out/xlsxfuzzer+0x33d328d)
Step #5:     #10 0x33d3204 in StgHeader::Load(StgIo&) (/tmp/not-out/xlsxfuzzer+0x33d3204)
Step #5:     #11 0x33d5d8d in StgIo::Load() (/tmp/not-out/xlsxfuzzer+0x33d5d8d)
Step #5:     #12 0x33b2e01 in Storage::Init(bool) (/tmp/not-out/xlsxfuzzer+0x33b2e01)
Step #5:     #13 0x33b33c8 in Storage::Storage(SvStream&, bool) (/tmp/not-out/xlsxfuzzer+0x33b33c8)
Step #5:     #14 0x9b3d5b1 in OLESimpleStorage::OLESimpleStorage(com::sun::uno::Reference<com::sun::uno::XComponentContext> const&,

Change-Id: Ibc03107373f5558f47894fffc34169218e4aff12
Reviewed-on: https://gerrit.libreoffice.org/c/core/+/108151
Tested-by: Jenkins
Reviewed-by: Caolán McNamara <caolanm@redhat.com>
This commit is contained in:
Caolán McNamara 2020-12-22 10:09:17 +00:00
parent 6d6d104cbb
commit 974ffa79b0
2 changed files with 13 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
sot/source/sdstor/stgio.cxx
View File

@ -55,7 +55,17 @@ bool StgIo::Load()
{ {
if( GetStrm() ) if( GetStrm() )
{ {
if( m_aHdr.Load( *this ) ) bool bLoaded;
try
{
bLoaded = m_aHdr.Load(*this);
}
catch (const SvStreamEOFException&)
{
SAL_WARN("sot", "EOF");
bLoaded = false;
}
if (bLoaded)
{ {
if( m_aHdr.Check() ) if( m_aHdr.Check() )
SetupStreams(); SetupStreams();