Fuzzing is fun, and still there are easy-to-discover issues lurking in even widely used tools.
For example I setup a site where I require users to upload an SSH key (for access to a git repository), and figured I'd do what github, etc, do in the display - show the fingerprint.
Given an SSH key you can get a fingerprint like so:
Yeah, AFL is an incredibly useful bit of work - I ran OpenJPEG through it and a number of reasonably actionable bug reports for the maintainers after a few hours. That class of tool used to be a LOT noisier.
For example I setup a site where I require users to upload an SSH key (for access to a git repository), and figured I'd do what github, etc, do in the display - show the fingerprint.
Given an SSH key you can get a fingerprint like so:
Can you imagine an SSH key causing ssh-keygen, or ssh to segfault? I found one over a weekend:https://blog.steve.fi/so_about_that_idea_of_using_ssh_keygen...
I found similar issues with other well-known tools, for example a program that would cause GNU awk to segfault.
Really I should do more..