Process get crashed with a corrupted file #79

bigcat88 · 2023-02-18T10:06:21Z

Based on this thread:

Tested it, and indeed it crashes the whole process.

Will try fix it in 0.10.0 upcoming release, will add additional check for image size after decoding.

The text was updated successfully, but these errors were encountered:

hackerfactor · 2023-02-19T14:29:45Z

You should be able to replicate this crash by setting the ispe dimensions to be larger than the rendered dimensions. If the final output space is allocated based on the ispe dimensions, then you end up with a read overflow. (Read overflows are not great, but not too problematic.)

If the ispe dimensions are smaller than the rendered image, then -- depending on how you are copying the data -- it could result in a write-overflow. (Write overflows are bad, very bad.)

bigcat88 added bug Something isn't working fixed in upcoming release fix will arrive with next release labels Feb 18, 2023

bigcat88 added a commit that referenced this issue Feb 21, 2023

fixed crash when image size differs after decoding #79

ed3e038

bigcat88 added fixed Fixed in last version and removed fixed in upcoming release fix will arrive with next release labels Feb 24, 2023

bigcat88 closed this as completed Feb 25, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Process get crashed with a corrupted file #79

Process get crashed with a corrupted file #79

bigcat88 commented Feb 18, 2023

hackerfactor commented Feb 19, 2023

Process get crashed with a corrupted file #79

Process get crashed with a corrupted file #79

Comments

bigcat88 commented Feb 18, 2023

hackerfactor commented Feb 19, 2023