NULL pointer dereference in ReadPALMImage

Swiss army knife of image processing

Brought to you by: bfriesen

#487 NULL pointer dereference in ReadPALMImage

Milestone: v1.0_(example)

Status: closed-fixed

Owner: Bob Friesenhahn

Labels: None

Priority: 5

Updated: 2017-09-30

Created: 2017-09-25

Creator: bestshow

Private: No

Here is the critical code: (in ReadPALMImage )

    lastrow = MagickAllocateMemory(unsigned char *,Max(palm_header.bytes_per_row,2*image->columns)); //1156

  mask = (1l << palm_header.bits_per_pixel) - 1;

  for (y = 0; y < (long) image->rows; y++)
    {
      if (palm_header.flags & PALM_IS_COMPRESSED_FLAG)
        {

    ...
                           one_row[i + bit] = lastrow[i + bit]; //1204
                          }
                      }
                  }
                (void) memcpy(lastrow, one_row, palm_header.bytes_per_row); //1208

MagickAllocateMemory(...) may return NULL, so the following operations on the "lastrow" will Dereference Null pointer to cause memory error.

Credit : ADLab of Venustech

Discussion

Bob Friesenhahn - 2017-09-30

status: open --> closed-fixed

assigned_to: Bob Friesenhahn
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Bob Friesenhahn - 2017-09-30

This problem is fixed by Mercurial changeset 15193:b0b6aba92ed1. Thanks for the report!

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

NULL pointer dereference in ReadPALMImage

Swiss army knife of image processing

Group

Searches

Help

#487 NULL pointer dereference in ReadPALMImage

Discussion