Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Stack over-read in MagickCore/accelerate.c due to type mismatch #967
I found that magick reads a buffer over the buffer size at the following line.
The above line reads
I can reproduce this crash only in 32-bit machine, I'm not sure why. also, this requires openCL support.
Steps to Reproduce
Compile ImageMagick with address sanitizer in 32-bit mode, and use this test.pict to run magick. this crash is triggered when it's zooming, so I added
Found by Choongwoo Han and Kyeongseok Yang, Naver Security Team