Package: antiword Version: 0.37-16 Severity: normal Dear Maintainer, running antiword with the attached file leads to an invalid read. I used the command line: antiword ./02_invalid_read_vGet8Stylesheet
this is the output of valgrind: [...] ==853== Invalid read of size 2 ==853== at 0x121D3B: vGet8Stylesheet (stylesheet.c:648) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== Address 0x4a0ff3e is 13 bytes after a block of size 1 alloc'd ==853== at 0x483577F: malloc (vg_replace_malloc.c:299) ==853== by 0x128031: xmalloc (xmalloc.c:37) ==853== by 0x121D07: vGet8Stylesheet (stylesheet.c:636) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== ==853== Invalid read of size 2 ==853== at 0x121D41: vGet8Stylesheet (stylesheet.c:645) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== Address 0x4a0ff32 is 1 bytes after a block of size 1 alloc'd ==853== at 0x483577F: malloc (vg_replace_malloc.c:299) ==853== by 0x128031: xmalloc (xmalloc.c:37) ==853== by 0x121D07: vGet8Stylesheet (stylesheet.c:636) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== ==853== Invalid read of size 2 ==853== at 0x121D4C: vGet8Stylesheet (stylesheet.c:647) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== Address 0x4a0ff34 is 3 bytes after a block of size 1 alloc'd ==853== at 0x483577F: malloc (vg_replace_malloc.c:299) ==853== by 0x128031: xmalloc (xmalloc.c:37) ==853== by 0x121D07: vGet8Stylesheet (stylesheet.c:636) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== ==853== Invalid read of size 2 ==853== at 0x121DC8: vGet8Stylesheet (stylesheet.c:658) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== Address 0x4a0ff30 is 0 bytes inside a block of size 1 alloc'd ==853== at 0x483577F: malloc (vg_replace_malloc.c:299) ==853== by 0x128031: xmalloc (xmalloc.c:37) ==853== by 0x121D07: vGet8Stylesheet (stylesheet.c:636) ==853== by 0x11FB13: vGetPropertyInfo (properties.c:118) ==853== by 0x127960: iInitDocumentOLE (wordole.c:792) ==853== by 0x1242D5: bWordDecryptor (word2text.c:665) ==853== by 0x10B6DE: bProcessFile (main_u.c:214) ==853== by 0x10B6DE: main (main_u.c:310) ==853== [...] -- Regards, Luca Borzacchiello -- System Information: Debian Release: 10.5 APT prefers testing APT policy: (500, 'testing'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 5.4.0-42-generic (SMP w/12 CPU cores) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: unable to detect Versions of packages antiword depends on: ii libc6 2.28-10 antiword recommends no packages. antiword suggests no packages. -- no debconf information
02_invalid_read_vGet8Stylesheet
Description: MS-Word document
