Thomas Leroy

icon indicating a website link https://thole.fr

icon location CTF with @TFNS | Product security @databricks

Results 4 comments of Thomas Leroy

Heap overflow in heif_colorconversion.cc:2263

Is the overflow fixed on master? I can't reproduce the bug

Heap overflow in heif_colorconversion.cc:2263

I've investigated the issue and it's actually partially fixed for the given poc. I'm not familiar with libheif codebase, so please correct me if my understandings are wrong. The attached...

Heap overflow in heif_colorconversion.cc:2263

They're both fixed. Strictly speaking, the code path that follows the crasher was fixed with [bca0162018df9a32d21c05aad1fa203881fa7813](https://github.com/strukturag/libheif/commit/bca0162018df9a32d21c05aad1fa203881fa7813l), introduced in 1.7.0

Heap overflow in heif_colorconversion.cc:2263

If maintainers are not interested in my suggestions in [this comment](https://github.com/strukturag/libheif/issues/207#issuecomment-1289322472), I guess we can close it