libpng
libpng copied to clipboard
glennrp
LIBPNG: Portable Network Graphics support, official libpng repository
On Linux ubuntu 22.04, Steps to reproduce 1. clone codes, store at /home/user.name/libpng 2. cd libpng 3. mkdir build;mkdir install_dir 4. cmake ../ -DPNG_SHARED=OFF -DPNG_STATIC=ON -DPNG_TESTS=OFF -DPNG_PREFIX=test_ -DCMAKE_PREFIX_PATH="/home/user.name/libpng" -DCMAKE_INSTALL_PREFIX="/home/user.name/libpng" 5....
from:https://github.com/gandalf4a/crash_report/blob/main/libpng/pngimage/bufferoverflow_compareread.md # Summary There is a buffer overflow in ./pngimage.c:1249 in compare_read. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted PNG file. # Version ```...
Calling `libpng-config --ldflags` unconditionally emits `-Lxxx`, which is problematic. Consider a standard Unix installation with libraries in `/usr/lib` (or `/usr/lib64`), and local packages in `/usr/local/lib` (or `/usr/local/lib64`). It is quite...
Hi, I found a crash in `png_warning` by using fuzzing. The `png_warning` will crash when the length of second argument less than 15 and the first byte is 0x23, if...
Hi, when fuzzing the libpng, i found a possible overflow in `png_set_quantize`. If the passed `num_palette` greater than the passed `maximum_colors` and the length of passed `histogram`, it will happens...
Hi, when fuzzing, we found a crash happend when `png_read_png` follows `png_set_quantize`. In `png_set_quantize`, it allocs the memory of `png_ptr->quantize_index` with the size of parameter `num_palette`. ``` if (full_quantize ==...
Currently the CMake files are installed to ``` install-prefix/lib/libpng/libpng/libpng16.cmake ``` but the common standard location would be ``` install-prefix/lib/cmake/libpng/libpng/libpng16.cmake ```
[ 1%] Generating pnglibconf.c options.awk: bad line (10): com CMake Error at scripts/gensrc.cmake:68 (message): Failed to generate pnglibconf.tf5
Hello, This PR adds support for the cICP chunk, which is an addition from the third version of the PNG specification. I'll happily make requested changes. Let me know what's...
LLVM 15 with `-Wimplicit-fallthrough` enabled refuses to compile libpng because there are implicit fallthroughs. Some of these, such as those in `pngread.c` are commented. Others might not be (I'm still...
