libpng
libpng copied to clipboard
glennrp
LIBPNG: Portable Network Graphics support, official libpng repository
Product version: libpng last version until March 13, 2021 Environment: Ubuntu 18.04.1 Reprocedure: ``` ./configure --fsanitize=address --disabled-shared make -j4 ``` AddressSanitizer Debug result: ``` $ ./pngimage poc.png poc.png: warning(libpng): original...
I'm using the source cloned from github, running latest version I'm guessing this is a compatibility issue? variable has incomplete type 'png_info' (aka 'struct png_info_def') png_info info_ptr; ^ ./png.h:484:16: note:...
In the source file timepng.c, in the function read_and_copy, the variable **io** may be assigned with a null pointer returned from the function **png_get_io_ptr** (in the source file png.c), and...
Sorry if this is answered somewhere, but I can't for the life of me find it.
png_ptr->pixel_depth and png_ptr->rowbytes may be overflown in the following lines: https://sourcegraph.com/github.com/glennrp/libpng@dbe3e0c43e549a1602286144d94b0666549b18e6/-/blob/pngrutil.c#L902 https://sourcegraph.com/github.com/glennrp/libpng@dbe3e0c43e549a1602286144d94b0666549b18e6/-/blob/pngrutil.c#L903 ( (size_t)(width) * (size_t)(pixel_bits) inside PNG_ROWBYTES )
Setting row_bytes to 0 may trigger undefined behavior or crash in the following line: https://sourcegraph.com/github.com/glennrp/libpng@dbe3e0c43e549a1602286144d94b0666549b18e6/-/blob/pngrutil.c#L3172
Preformance comparision can be obtained from this report http://www.htslib.org/benchmarks/zlib.html
When compiled libpng it gave me an error although I completed compiling zlib-1.2.11: ... make check-am make[1]: Entering directory '/usr/src/libpng-1.6.34' /bin/sh ./libtool --tag=CC --mode=link gcc -g -O2 -no-undefined -export-dynamic -version-number...
There is a crash in `png_do_write_transformations` which is reachable from the `png_write_png` API. This happens because of an invalid pointer increment (_sp_) in `png_do_strip_channel` without checking the width, for exmaple:...
See the png_inflate_claim method inside pngrutil.c What would be a good work-around for applications targeting pre < macos 10.13 ? Is it safe for me to just undefine PNG_SET_OPTION_SUPPORTED ?
