GIFLIB / Bugs / #79 Invalid heap read in gif2rgb, function DumpScreen2RGB()

Eric S. Raymond - 2016-01-17

Fixed in head, thanks.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Eric S. Raymond - 2016-01-17

status: open --> closed

assigned_to: Eric S. Raymond
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Eric S. Raymond - 2016-01-17

Fixed in head, thanks.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Hanno Böck - 2016-01-17

I don't see a fix for this, this is still happening in the current git head code.
Have you actually pushed the commit? (I only see a fix for bug #78)

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Eric S. Raymond - 2016-01-22

The bug is definitely failing to reproduce here, I re-downloded your test case and checked.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Hanno Böck - 2016-01-23

How have you tried to reproduce it? (I wrote that this can be seen with valgrind in my original report, but that seems not to be the case - address sanitizer is usually more powerful in finding these kinds of issues)

The exact steps here how I can still reproduce it:
git clone --depth=1 git://git.code.sf.net/p/giflib/code giflib-code
cd giflib-code/
CFLAGS="-fsanitize=address -g" LDFLAGS="-fsanitize=address" ./autogen.sh
make
wget https://sourceforge.net/p/giflib/bugs/79/attachment/gif2rgb-oob-heap-read.gif
util/gif2rgb gif2rgb-oob-heap-read.gif

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
- Eric S. Raymond - 2016-02-09
  
  "Hanno Böck" ctulhu@users.sf.net:
  
  How have you tried to reproduce it? (I wrote that this can be seen with valgrind in my original report, but that seems not to be the case - address sanitizer is usually more powerful in finding these kinds of issues)
  
  The exact steps here how I can still reproduce it:
  git clone --depth=1 git://git.code.sf.net/p/giflib/code giflib-code
  cd giflib-code/
  CFLAGS="-fsanitize=address -g" LDFLAGS="-fsanitize=address" ./autogen.sh
  make
  wget https://sourceforge.net/p/giflib/bugs/79/attachment/gif2rgb-oob-heap-read.gif
  util/gif2rgb gif2rgb-oob-heap-read.gif
  
  I have added a couple of hardening patches recently. Would you please retest.
  
  <a href="http://www.catb.org/~esr/">Eric S. Raymond</a>
  
  If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Hanno Böck - 2016-02-09

Tested again with latest git code, no change. bug still there.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Sebastian Pipping - 2025-04-07

I used git bisect now and found that releases <5.1.5 are affected. Commit https://sourceforge.net/p/giflib/code/ci/ea8dbc5786862a3e16a5acfa3d24e2c2f608cd88/ has an apparent fix, issue #87 is related.

CC @ctulhu

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Invalid heap read in gif2rgb, function DumpScreen2RGB()

A library and utilities for processing GIFs

Group

Searches

Help

#79 Invalid heap read in gif2rgb, function DumpScreen2RGB()

Discussion

I have added a couple of hardening patches recently. Would you please retest.