memory leaks in ReadDCMImage #931

henices · 2018-01-04T07:55:45Z

INFO

Version: ImageMagick 7.0.7-20 Q16 x86_64 2018-01-04 http://www.imagemagick.org
Copyright: © 1999-2018 ImageMagick Studio LLC
License: http://www.imagemagick.org/script/license.php
Features: Cipher DPC HDRI
Delegates (built-in): bzlib djvu fftw fontconfig freetype gvc jbig jng jpeg lcms lqr lzma pangocairo png tiff webp wmf x xml zlib

Trigger Command: /usr/local/bin/magick ReadDCMImage-memory-leaks /dev/null

ASAN OUTPUT

magick: insufficient image data in file `ReadDCMImage-memory-leaks' @ error/dcm.c/ReadDCMImage/3268.

=================================================================
==12759==ERROR: LeakSanitizer: detected memory leaks

Direct leak of 252 byte(s) in 1 object(s) allocated from:
    #0 0x4cf7f0 in __interceptor_malloc (/usr/local/bin/magick+0x4cf7f0)
    #1 0x7fd403bd9846 in AcquireMagickMemory /home/henices/tests/ImageMagick/MagickCore/memory.c:464:10
    #2 0x7fd403bd98a8 in AcquireQuantumMemory /home/henices/tests/ImageMagick/MagickCore/memory.c:537:10
    #3 0x7fd404344a99 in ReadDCMImage /home/henices/tests/ImageMagick/coders/dcm.c:3569:28
    #4 0x7fd4036c357a in ReadImage /home/henices/tests/ImageMagick/MagickCore/constitute.c:497:13
    #5 0x7fd4036cb3a7 in ReadImages /home/henices/tests/ImageMagick/MagickCore/constitute.c:866:9
    #6 0x7fd4022dd127 in CLINoImageOperator /home/henices/tests/ImageMagick/MagickWand/operation.c:4763:22
    #7 0x7fd4022e6f60 in CLIOption /home/henices/tests/ImageMagick/MagickWand/operation.c:5258:7
    #8 0x7fd401e344cb in ProcessCommandOptions /home/henices/tests/ImageMagick/MagickWand/magick-cli.c:424:13
    #9 0x7fd401e3779d in MagickImageCommand /home/henices/tests/ImageMagick/MagickWand/magick-cli.c:796:5
    #10 0x7fd401ee99a5 in MagickCommandGenesis /home/henices/tests/ImageMagick/MagickWand/mogrify.c:183:14
    #11 0x50a313 in MagickMain /home/henices/tests/ImageMagick/utilities/magick.c:149:10
    #12 0x5096b1 in main /home/henices/tests/ImageMagick/utilities/magick.c:180:10
    #13 0x7fd3fb27f009 in __libc_start_main (/lib64/libc.so.6+0x21009)

SUMMARY: AddressSanitizer: 252 byte(s) leaked in 1 allocation(s).

testcase: https://github.com/henices/pocs/raw/master/ReadDCMImage-memory-leaks

Credit: NSFocus Security Team <security (at) nsfocus (dot) com>

The text was updated successfully, but these errors were encountered:

urban-warrior · 2018-01-04T11:49:32Z

Thanks for the problem report. We can reproduce it and will have a patch to fix it in GIT master branch @ https://github.com/ImageMagick/ImageMagick later today. The patch will be available in the beta releases of ImageMagick @ http://www.imagemagick.org/download/beta/ by sometime tomorrow.

nohmask · 2018-06-04T00:50:45Z

This was assigned CVE-2018-11656.

urban-warrior pushed a commit that referenced this issue Jan 4, 2018

https://github.com/ImageMagick/ImageMagick/issues/931

4da2cd6

urban-warrior pushed a commit that referenced this issue Jan 4, 2018

https://github.com/ImageMagick/ImageMagick/issues/931

caedfad

dlemstra added the bug label Jan 4, 2018

dlemstra closed this as completed Jan 4, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

memory leaks in ReadDCMImage #931

memory leaks in ReadDCMImage #931

henices commented Jan 4, 2018 •

edited

Loading

urban-warrior commented Jan 4, 2018

nohmask commented Jun 4, 2018

memory leaks in ReadDCMImage #931

memory leaks in ReadDCMImage #931

Comments

henices commented Jan 4, 2018 • edited Loading

INFO

ASAN OUTPUT

urban-warrior commented Jan 4, 2018

nohmask commented Jun 4, 2018

henices commented Jan 4, 2018 •

edited

Loading