Check bounds in XMP SDK (#852)
* Check bounds of month and day. * Add some more bounds checks. * Fix test failure in clang.
This commit is contained in:
Kevin Backhouse
committed by
Luis Díaz Más
Luis Díaz Más
parent
81ae213c71
commit
fe538e9438
@@ -0,0 +1,31 @@
|
||||
# -*- coding: utf-8 -*-
|
||||
|
||||
from system_tests import CaseMeta, path
|
||||
|
||||
|
||||
class DenialOfServiceInAdjustTimeOverflow(metaclass=CaseMeta):
|
||||
"""
|
||||
Regression test for the bug described in:
|
||||
https://github.com/Exiv2/exiv2/issues/851
|
||||
|
||||
The date parsing code in XMPUtils::ConvertToDate does not
|
||||
check that the month and day are in bounds. This can cause a
|
||||
denial of service in AdjustTimeOverflow because it adjusts
|
||||
out-of-bounds days in a loop that subtracts one month per
|
||||
iteration.
|
||||
"""
|
||||
url = "https://github.com/Exiv2/exiv2/issues/851"
|
||||
|
||||
filename = path("$data_path/issue_851_poc.xmp")
|
||||
commands = ["$exiv2 $filename"]
|
||||
stdout = ["""File name : $filename
|
||||
File size : 317 Bytes
|
||||
MIME type : application/rdf+xml
|
||||
Image size : 0 x 0
|
||||
"""
|
||||
]
|
||||
stderr = [
|
||||
"""Warning: Failed to convert Xmp.xmp.CreateDate to Exif.Photo.DateTimeDigitized (Day is out of range)
|
||||
$filename: No Exif data found in the file
|
||||
"""]
|
||||
retval = [253]
|
||||
Reference in New Issue
Block a user