[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[PATCH 0/6] Support fuzzing grub's image file parsers
From: |
Daniel Axtens |
Subject: |
[PATCH 0/6] Support fuzzing grub's image file parsers |
Date: |
Tue, 28 Mar 2023 01:04:53 +1100 |
This is a cleaned up version of the fuzzers that I used to find
CVE-2021-3695, CVE-2021-3696 and CVE-2021-3697.
We're releasing this now because the techniques are not novel, the
code is not hard to independently replicate, and it's hard to see what
is gained by not releasing them. (I should add that the grub security
working group has been supportive of this for some time - any and all
responsibility for the delay in getting this posted rests with me.)
Obivously the techniques here are extensible and I'd be very happy to
see people add more fuzzers to increase coverage based on this
infrastructure.
Kind regards,
Daniel
- [PATCH 0/6] Support fuzzing grub's image file parsers,
Daniel Axtens <=
- [PATCH 1/6] configure.ac: detect if compiler supports -fsanitize=fuzzer, Daniel Axtens, 2023/03/27
- [PATCH 4/6] tests: create a fuzzer for the jpeg image format, Daniel Axtens, 2023/03/27
- [PATCH 6/6] docs: document fuzzer support, Daniel Axtens, 2023/03/27
- [PATCH 3/6] tests: create a fuzzer for the png image format, Daniel Axtens, 2023/03/27
- [PATCH 2/6] bitmap.h: set smaller image size limit when fuzzing, Daniel Axtens, 2023/03/27
- [PATCH 5/6] tests: create a fuzzer for the tga image format, Daniel Axtens, 2023/03/27