Merge pull request #6402 from radarhere/gif_decompression_bomb

Added GIF decompression bomb check
python-pillow · Jun 30, 2022 · 884437f · 884437f
2 parents 8f35234 + c9f1b35
commit 884437f
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 0 deletions.
diff --git a/Tests/images/decompression_bomb_extents.gif b/Tests/images/decompression_bomb_extents.gif
diff --git a/Tests/test_decompression_bomb.py b/Tests/test_decompression_bomb.py
@@ -61,6 +61,11 @@ def test_exception_gif(self):
             with Image.open("Tests/images/decompression_bomb.gif"):
                 pass
 
+    def test_exception_gif_extents(self):
+        with Image.open("Tests/images/decompression_bomb_extents.gif") as im:
+            with pytest.raises(Image.DecompressionBombError):
+                im.seek(1)
+
     def test_exception_bmp(self):
         with pytest.raises(Image.DecompressionBombError):
             with Image.open("Tests/images/bmp/b/reallybig.bmp"):

diff --git a/src/PIL/GifImagePlugin.py b/src/PIL/GifImagePlugin.py
@@ -265,6 +265,7 @@ def _seek(self, frame, update_image=True):
                 x1, y1 = x0 + i16(s, 4), y0 + i16(s, 6)
                 if (x1 > self.size[0] or y1 > self.size[1]) and update_image:
                     self._size = max(x1, self.size[0]), max(y1, self.size[1])
+                    Image._decompression_bomb_check(self._size)
                 frame_dispose_extent = x0, y0, x1, y1
                 flags = s[8]