Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
heap-buffer-overflow in WritePNMImage of coders/pnm.c #1540
There is a heap buffer overflow vulnerability in function WritePNMImage of coders/pnm.c.
Steps to Reproduce
@urban-warrior : I think there are a few weaknesses in this patch. Shouldn't
Also, the memset call initializes
Thanks for your work!
One question though: what is the exact purpose of the
I am currently backporting this patch to older versions of ImageMagick and would like to know what belongs to the security patch and what not.
SyncAuthenticPixels() ensures the pixel cache backing store is sync with any pixels in the staging buffer. In most cases the staging buffer and the pixel cache point to the same memory location, but not always. See https://imagemagick.org/script/architecture.php#cache for the pixel cache rules of engagement.