Skip to content

memory leaks in PingImage #1558

Closed
Closed
@butterflyhack

Description

@butterflyhack

Prerequisites

  • I have written a descriptive issue title
  • I have verified that I am using the latest version of ImageMagick
  • I have searched open and closed issues to ensure it has not already been reported

Description

==104405==ERROR: LeakSanitizer: detected memory leaks

Direct leak of 13504 byte(s) in 1 object(s) allocated from:
    #0 0x7ff36e5f7602 in malloc (/usr/lib/x86_64-linux-gnu/libasan.so.2+0x98602)
    #1 0x43f2a5 in AcquireMagickMemory MagickCore/memory.c:478
    #2 0x412eef in AcquireCriticalMemory MagickCore/memory-private.h:64
    #3 0x413262 in AcquireImage MagickCore/image.c:172
    #4 0x580742 in ReadDOTImage coders/dot.c:129
    #5 0x806aa6 in ReadImage MagickCore/constitute.c:547
    #6 0x4b69f6 in ReadStream MagickCore/stream.c:1043
    #7 0x805b31 in PingImage MagickCore/constitute.c:269
    #8 0x8060fd in PingImages MagickCore/constitute.c:370
    #9 0xc1b2a7 in IdentifyImageCommand MagickWand/identify.c:319
    #10 0xc9fbca in MagickCommandGenesis MagickWand/mogrify.c:185
    #11 0x40e9e1 in MagickMain utilities/magick.c:149
    #12 0x40ebc2 in main utilities/magick.c:180
    #13 0x7ff36a8e782f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)

Steps to Reproduce

run cmd:

/usr/local/bin/magick identify $inupt

System Configuration

  • ImageMagick version:
    7.0.8-43
  • Environment (Operating system, version and so on):
    Linux ubuntu 4.15.0-47-generic (IM7) Fixed TR/TD placement in MVG docs #50~16.04.1-Ubuntu SMP Fri Mar 15 16:06:21 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux
  • Additional information:
    ./configure CC="gcc" CXX="g++" CFLAGS="-g -fsanitize=address" -disable-shared

testcase:
https://github.com/butterflyhack/pocs/blob/master/memory-leaks-identify-PingImage.zip

report by ADlab of Venustech

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions