Legacy ImageMagick Discussions Archive

Jodie's ID: 07c8accc Source file that causes the SEGV: https://www.dropbox.com/s/l6vmxamc8i8xyk0/07c8accc_00?dl=0 IM version: ImageMagick-6.8.9-8 32-bit Debian Wheezy (TKL) 64-bit Ubuntu 14.04 Command line: convert $filename png:/dev/null gdb run: 7a618fe in GetEXIFProperty (property=<optimized out>...

Errors properly on a self-compiled IM 6.8.9-8 on Ubuntu 14.04 amd64 ~/ImageMagick-6.8.9-8/utilities$ ./convert ~/Downloads/aa.tif png:/dev/null lt-convert: Sanity check on directory count failed, this is probably not a valid IFD offset. `TIFFFetchDirectory' @ error/tiff.c/TIFFErrors/561. lt-convert:...

in ubuntu 14.04 amd64 with imagemagick-6.7.7.10: ReadTIFFImage (image_info=0x60dbd0, exception=0x605610) at coders/tiff.c:1261 1261 image->colormap[i].green=ClampToQuantum(((double) QuantumRange* gdb$ context --------------------------------------------------------------------------[regs] EAX: 0x006...

The \x40 is being evaluated as a length of 64, which skips ahead in the file about 68-69 bytes when it shouldn't. The next bytes read are from the wrong portion of the file and the resulting evaluation of those bytes provides another length value almost equal to the 32-bit unsigned integer limit. I ...

I tried against ImageMagick-6.8.9-9 (compiled from ImageMagick-6.8.9-9~beta20141005.tar.gz) on the TKL Debian Wheezy 32-bit host. Same as before. Core was generated by `/root/ImageMagick-6.8.9-9/utilities/.libs/lt-convert /root/id:000001,src:000002'. Program terminated with signal 6, Aborted. #0 0xb...

I'm using TKL Debian Wheezy i386, 6.8.9-8 from source here and libjpeg8 is 8d-1+deb7u1 http://sourceforge.net/projects/turnkeylinux/files/iso/turnkey-core-13.0-wheezy-i386.iso/download I was unable to reproduce it on Ubuntu 14.04 x86_64 with 6.8.9-8 built from source here, libjpeg8 was 8c-2ubuntu8. ...

Hi, I've been fuzzing ImageMagick and came across the following segfault. I am fuzzing conversion of jpg to png. cmdline: lt-convert ./id:000001,src:000002,op:flip1,pos:4473 png:/dev/null works: original jpg file: https://www.dropbox.com/s/uhamfas94fpfg08/1cbb1bb37d62c44f67374cd451643dc4.jpg?dl=0 SE...