-
-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
stack-buffer-underflow #973
Comments
@SmileBugs Thanks for reporting this 👍 Could you make sure you put your stack trace in a code block next time (you can also edit this one)? You are now referencing other unrelated issues. |
@dlemstra Sorry my English is not so good. I don't quite understand what you mean. I don't know who is in the libfpx library so it is submitted here. |
When you use |
ok,Will you fix this bug? |
We maintain the libfpx library so we will take a look at this. It will probably take a couple days before we have time to take a look at it. |
Let us qualify. We maintain the libfpx delegate library as a service to the community but we do not "officially" maintain it-- meaning we typically rely on the user community to submit a patch and we will apply it and stage a new release. |
credit: zxsoft security team. |
这个漏洞只在32位上面触发?我用ubuntu16 64位,测试没有触发漏洞。那个libfpx要替换? |
@butterflyhack ??? |
@dlemstra ,I run the poc on the ubuntu16 64bit, but no crash. where is the libfpx ? |
@SmileBugs Are you responsible for the content of the CVE message? The message states that the issue can be reproduced with just a crafted bmp image. But that is incorrect. The most important part is that you need to write a FPX image. And this is also not an ImageMagick issue but an issue with the libfpx library that is used by ImageMagick. |
@dlemstra I clearly stated that libfpx is a problem. ImageMagick is only affected.About the need to write FPX pictures I submitted at the time did not write so detailed. |
@SmileBugs , @dlemstra was this issue ever addressed? and if so could you kindly point out where? |
The ImageMagick team did not address this issue because this is a libfpx issue but we have no idea if that was resolved elsewhere. Maybe @SmileBugs knows. |
@dlmestra I noticed that libfpx is a delegate of ImageMagick and a repo is maintained: https://github.com/ImageMagick/libfpx The readme says "This package is currently maintained by the ImageMagick Studio LLC," If this is not 'upstream', can you point to where that might be? The other three hits on GitHub seem to be clones or not a full repo. |
The ImageMagick team did not write nor does it maintain the libfpx delegate library other than we will accept patches from the user community, apply it, and then export a new release. We will not, however, debug and create patches ourselves. You can see from the ImageMagick repos we have more than enough to do given our small development team. After you determine the source of the bug and identify a patch, post it here and we will do the rest. |
Prerequisites
Description
Version: ImageMagick 7.0.7-22 Q16 i686 2018-02-07 http://www.imagemagick.org
Copyright: © 1999-2018 ImageMagick Studio LLC
License: http://www.imagemagick.org/script/license.php
Features: Cipher DPC HDRI Modules OpenMP
Delegates (built-in): bzlib cairo djvu fftw flif fontconfig fpx freetype jbig jng jp2 jpeg lcms ltdl openexr pangocairo png raw rsvg tiff webp wmf x xml zlib
libfpx ::ftp://ftp.imagemagick.org/pub/ImageMagick/delegates/libfpx-1.3.1-10.tar.gz
ASAN OUTPUT
POC
not_kitty.zip
System Configuration
Found by: Wang Yan
The text was updated successfully, but these errors were encountered: