Creating test case using base program.
Added a Socket Server to accept communication from untrusted source.
Completed injection.
UNSPECIFIED
UNSPECIFIED
$SS_TC_ROOT/$SS_TC_INSTALL/bin/gimp $SS_TC_ROOT/testData/input.jpg
env
./configure --prefix="$SS_TC_ROOT/$SS_TC_INSTALL" --disable-alsatest --without-libmng --without-libexif --without-aa --without-librsvg --without-poppler --without-gvfs --without-libjasper --with-lcms --without-alsa --disable-python
make V=1 CC="$SS_CC"
make install V=1
Open saved jpg file
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-01 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
input image opened.
DOES_NOT_RETURN
CONTROLLED_EXIT
color invert an image
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-02 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
image colors inverted
DOES_NOT_RETURN
CONTROLLED_EXIT
create a layer, fill with black, use divde layer mode
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-03 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
Layer created, and layer mode changed.
DOES_NOT_RETURN
CONTROLLED_EXIT
view color histogram of image
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-04 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
Histogram of image generated.
DOES_NOT_RETURN
CONTROLLED_EXIT
add supernova filter
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-05 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
supernova added
DOES_NOT_RETURN
CONTROLLED_EXIT
make selection with magic wand, paste into new image
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-06 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
Magic Wand selection pasted into new document.
DOES_NOT_RETURN
CONTROLLED_EXIT
rotate image 180 degrees
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-07 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
Image rotated 180 degrees.
DOES_NOT_RETURN
CONTROLLED_EXIT
add pagecurl filter
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-08 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
pagecurl added
DOES_NOT_RETURN
CONTROLLED_EXIT
use edgefinder filter
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-09 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
pagecurl added
DOES_NOT_RETURN
CONTROLLED_EXIT
pixelize image
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
NONE
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
GOOD-10 AND NOT TIMEOUT AND NOT CONTROLLED_EXIT
image pixelized.
DOES_NOT_RETURN
CONTROLLED_EXIT
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
READ_APPLICATION_DATA
DOS_UNCONTROLLED_EXIT
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
weakness_started_PbxRJxeDH6I37fZTqclD AND ((NOT PERFORMER AND (segfault_code_d2lRWxCwe3 OR segfault_code_qFA9rlRivz OR segfault_code_dWbnERUjJu OR segfault_code_oPQncXqxHJ OR segfault_code_QKevtzFcvs OR segfault_msg_d7yBRYye4P OR illegal_inst_msg_Ime6o0MdWT OR stack_overread_mKmHVnMv38) AND NOT timeout_A11WHugxqv) or (PERFORMER AND NOT ((segfault_code_d2lRWxCwe3 OR segfault_code_qFA9rlRivz OR segfault_code_dWbnERUjJu OR segfault_code_oPQncXqxHJ OR segfault_code_QKevtzFcvs OR segfault_msg_d7yBRYye4P OR illegal_inst_msg_Ime6o0MdWT OR stack_overread_mKmHVnMv38) OR timeout_A11WHugxqv OR controlled_exit_UAHwh2nIfF)))
(NOT PERFORMER AND (segfault_code_d2lRWxCwe3 OR segfault_code_qFA9rlRivz OR segfault_code_dWbnERUjJu OR segfault_code_oPQncXqxHJ OR segfault_code_QKevtzFcvs OR segfault_msg_d7yBRYye4P OR illegal_inst_msg_Ime6o0MdWT OR stack_overread_mKmHVnMv38) AND NOT timeout_A11WHugxqv) or (PERFORMER AND NOT ((segfault_code_d2lRWxCwe3 OR segfault_code_qFA9rlRivz OR segfault_code_dWbnERUjJu OR segfault_code_oPQncXqxHJ OR segfault_code_QKevtzFcvs OR segfault_msg_d7yBRYye4P OR illegal_inst_msg_Ime6o0MdWT OR stack_overread_mKmHVnMv38) OR timeout_A11WHugxqv OR controlled_exit_UAHwh2nIfF))
DOES_NOT_RETURN
CONTROLLED_EXIT
CONTINUED_EXECUTION
None
132
None
134
None
135
None
136
None
139
None
Segmentation fault
None
Illegal instruction
logfile.txt
([0-9a-fA-F]{2}){60,}
None
stonesoup_trace:weakness_start
Good inputs:1) environment variable is a string value with no formatting2) environement variable is a format string that doesn't expose application dataBad inputs:1) environment variable is a format string that exposes application data
READ_APPLICATION_DATA
DOS_UNCONTROLLED_EXIT
$SS_TC_ROOT/logs/execute/lttng
$SS_TC_DEPS/lib64/liblttng-stonesoup-c.so:$SS_TC_DEPS/lib64/liblttng-ust-fork.so
0
weakness_started_w561qF9LZeeSbkSPGXvm AND ((NOT PERFORMER AND (segfault_code_RIUWU69ARn OR segfault_code_A4LoSURak4 OR segfault_code_745NhI0E1i OR segfault_code_AZmb8Mj4tE OR segfault_code_pmaOTOsfn4 OR segfault_msg_eTaIBkjE9j OR illegal_inst_msg_kRaZeo2BqR OR stack_overread_B629Hlrupk) AND NOT timeout_aOyDL6AUe1) or (PERFORMER AND NOT ((segfault_code_RIUWU69ARn OR segfault_code_A4LoSURak4 OR segfault_code_745NhI0E1i OR segfault_code_AZmb8Mj4tE OR segfault_code_pmaOTOsfn4 OR segfault_msg_eTaIBkjE9j OR illegal_inst_msg_kRaZeo2BqR OR stack_overread_B629Hlrupk) OR timeout_aOyDL6AUe1 OR controlled_exit_75dQrQoyo5)))
(NOT PERFORMER AND (segfault_code_RIUWU69ARn OR segfault_code_A4LoSURak4 OR segfault_code_745NhI0E1i OR segfault_code_AZmb8Mj4tE OR segfault_code_pmaOTOsfn4 OR segfault_msg_eTaIBkjE9j OR illegal_inst_msg_kRaZeo2BqR OR stack_overread_B629Hlrupk) AND NOT timeout_aOyDL6AUe1) or (PERFORMER AND NOT ((segfault_code_RIUWU69ARn OR segfault_code_A4LoSURak4 OR segfault_code_745NhI0E1i OR segfault_code_AZmb8Mj4tE OR segfault_code_pmaOTOsfn4 OR segfault_msg_eTaIBkjE9j OR illegal_inst_msg_kRaZeo2BqR OR stack_overread_B629Hlrupk) OR timeout_aOyDL6AUe1 OR controlled_exit_75dQrQoyo5))
DOES_NOT_RETURN
CONTROLLED_EXIT
CONTINUED_EXECUTION
None
132
None
134
None
135
None
136
None
139
None
Segmentation fault
None
Illegal instruction
logfile.txt
([0-9a-fA-F]{2}){60,}
None
stonesoup_trace:weakness_start