Null Pointer Dereferencing bug in plugins/codecs/zfp/blosc2-zfp.c

Question

Null Pointer Dereferencing bug in plugins/codecs/zfp/blosc2-zfp.c

rish9101 opened this issue 2 years ago · 0 comments

Describe the bug
Null Pointer Dereferencing at line 641 in plugins/codecs/zfp/blosc2-zfp.c. This is caused due to using a pointer to a chunk which does not exist. This bug is in function zfp_rate_decompress.

To Reproduce
Run the fuzzing harness in tests/fuzz fuzz_decompress_chunk with the attached input (in Zip File)
null-ptr-3.zip

Expected behavior
Check whether the chunk is a correct pointer at line 640.

Logs
If applicable, add logs to help explain your problem.

System information:

OS: Ubuntu 20.04
Compiler: clang-11
Version: Latest commit on main branch

Additional context
This bug has been found by fuzzing.