After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 147576 - Security flaw in GIF handler
Security flaw in GIF handler
Status: RESOLVED DUPLICATE of bug 142074
Product: GIMP
Classification: Other
Component: libgimp
2.0.x
Other Linux
: Normal normal
: ---
Assigned To: GIMP Bugs
GIMP Bugs
Depends on:
Blocks:
 
 
Reported: 2004-07-14 13:41 UTC by Frank Denis
Modified: 2004-07-14 16:44 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description Frank Denis 2004-07-14 13:41:56 UTC 
Trying to load the following picture : 
 
http://www.c9x.org/kaboomgif.gif 
 
from Gimp 2.0.2 causes an immediate crash, due to an excessive allocation of 
memory.
Comment 1 Michael Natterer 2004-07-14 13:49:17 UTC 
Is this supposed to be a valid GIF or is this something
made to carsh web browsers?
Comment 2 Sven Neumann 2004-07-14 13:54:45 UTC 
The problem is not the GIF plug-in. The image claims to be 1x1 and contains a
frame sized 560x697:

* kaboomgif.gif 1 image
  logical screen 1x1
  global color table [256]
  background 255
  + image #0 560x697
    comment {{{{{Powered by Cold Fusion and CFX_IMAGE\n

This triggers the known bug in the layer preview code. Closing as duplicate.

*** This bug has been marked as a duplicate of 142074 ***
Comment 3 weskaggs 2004-07-14 14:39:35 UTC 
Well, the crash is no doubt caused by the same problem responsible for 142074,
but we don't really want to open this file as a 1x1 image, do we?
Comment 4 Sven Neumann 2004-07-14 16:44:23 UTC 
Why not? The header clearly declares it as 1x1. Why shouldn't we open it with
this size? GIMP is an image manipulation program, not a web browser or image
viewer. For these apps it might make sense to workaround such obviously wrong
files but in GIMP we should open the file as is.