Skip to content

Null Pointer Dereference in TIFFIgnoreTags #719

Closed
@jgj212

Description

@jgj212

ImageMagick 7.0.7-0 Q16 x86_64

Here is the critical code:

  ignore=(TIFFFieldInfo *) AcquireQuantumMemory(count,sizeof(*ignore));   //line 2224
  /* This also sets field_bit to 0 (FIELD_IGNORE) */
  ResetMagickMemory(ignore,0,count*sizeof(*ignore));

AcquireQuantumMemory(...) may return NULL, so ResetMagickMemory(...) will access Null pointer to cause memory error.

Credit: ADLab of Venustech

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions