-
-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
AddressSanitizer: heap-buffer-overflow /src/imagemagick/./MagickCore/quantum-private.h:256:27 in PushLongPixel #4988
Comments
Unfortunately we cannot reproduce the issue with the
|
|
Thanks for the problem report. We can reproduce it and will have a patch to fix it in the GIT main branch @ https://github.com/ImageMagick/ImageMagick later today. The patch will be available in the beta releases of ImageMagick @ https://imagemagick.org/download/beta/ by sometime tomorrow. |
## [7.1.0-29](ImageMagick/ImageMagick@7.1.0-28...7.1.0-29) - 2022-03-27 ### Merged - Remove unused EXPLICIT_TEMPLATE_INSTANTIATION [`#4982`](ImageMagick/ImageMagick#4982) - Fixes #4985: 4e+26 is outside the range of representable values of type 'unsigned long' at coders/pcl.c:299 [`#4986`](ImageMagick/ImageMagick#4986) ### Fixed - Fixes #4985: 4e+26 is outside the range of representable values of type 'unsigned long' at coders/pcl.c:299 (#4986) [`#4985`](ImageMagick/ImageMagick#4985) ### Commits - ImageMagick/ImageMagick#4936 [`83b114f`](ImageMagick/ImageMagick@83b114f) - latest changelog [`d1d344b`](ImageMagick/ImageMagick@d1d344b) - ... [`280e7e6`](ImageMagick/ImageMagick@280e7e6) - enforce one `id` per MIFF image [`966a769`](ImageMagick/ImageMagick@966a769) - ImageMagick/ImageMagick#4987 [`25309b9`](ImageMagick/ImageMagick@25309b9) - over allocate quantum pixel buffer [`219d19f`](ImageMagick/ImageMagick@219d19f) - ImageMagick/ImageMagick#4972 [`ffc2aaa`](ImageMagick/ImageMagick@ffc2aaa) - ImageMagick/ImageMagick#4936 [`000557d`](ImageMagick/ImageMagick@000557d) - set quantum extent [`c909df1`](ImageMagick/ImageMagick@c909df1) - revert [`96162eb`](ImageMagick/ImageMagick@96162eb) - revert [`cb65691`](ImageMagick/ImageMagick@cb65691) - revert [`ab39cc4`](ImageMagick/ImageMagick@ab39cc4) - cosmetic [`2c35b9a`](ImageMagick/ImageMagick@2c35b9a) - cosmetic [`e36bd84`](ImageMagick/ImageMagick@e36bd84) - no suitable delegate utility for CGM or FIG formats [`004fc5d`](ImageMagick/ImageMagick@004fc5d) - speculative allocation since we don't yet know the quantum type [`bd77531`](ImageMagick/ImageMagick@bd77531) - latest changes [`2bfd2be`](ImageMagick/ImageMagick@2bfd2be) - account for case where gray image is imported as RGBA [`22cfaf3`](ImageMagick/ImageMagick@22cfaf3) - reset id [`a4736b4`](ImageMagick/ImageMagick@a4736b4) - pending release [`a6551b2`](ImageMagick/ImageMagick@a6551b2) - pending release [`8be1086`](ImageMagick/ImageMagick@8be1086) - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45887 [`96ae906`](ImageMagick/ImageMagick@96ae906) - ImageMagick/ImageMagick#4975 [`44cb819`](ImageMagick/ImageMagick@44cb819) - ImageMagick/ImageMagick#4974 [`c871830`](ImageMagick/ImageMagick@c871830) - ImageMagick/ImageMagick#4988 [`ca3654e`](ImageMagick/ImageMagick@ca3654e) - release [`4c0b7d2`](ImageMagick/ImageMagick@4c0b7d2) - reset id [`83de35d`](ImageMagick/ImageMagick@83de35d)
ImageMagick version
7.1.0-27
Operating system
Linux
Operating system, version and so on
Linux d477f3580ae9 5.4.0-105-generic #119~18.04.1-Ubuntu SMP Tue Mar 8 11:21:24 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux
Description
Hello,
We are currently working on fuzz testing feature, and we found a heap-use-after-free on ImageMagick.
Steps to Reproduce
Images
poc.zip
The text was updated successfully, but these errors were encountered: