Fix integer wrap around and segmentation fault in Exif.cpp

Brought to you by: drolon, noescom

#157 Fix integer wrap around and segmentation fault in Exif.cpp

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2023-02-15

Created: 2023-02-15

Creator: Anonymous

Private: No

In Metadata/Exif.cpp in jpeg_read_exif_profile() the size of exif_signature is subtracted from dwProfileLength without checking if the profile length was big enough to hold the exif signature. This patch aborts jpeg_read_exif_profile() if the profile is not long enough.

1 Attachments

FreeImage-jpeg_read_exif_profile-dwProfileLength-exif_signature.patch

Discussion

Anonymous

Fix integer wrap around and segmentation fault in Exif.cpp

Group

Searches

Help

#157 Fix integer wrap around and segmentation fault in Exif.cpp

Discussion