Closed fgeek closed 5 years ago
Confirmed in f1267fbd3cd3635a628c30e523fe1217f0f8a3b3. Minimized sample CVE-2018-20545.zip with afl-tmin (SHA1: 804ae44ad65e54d69f23eb88af73cae77c2a0d1e)
00000000 42 4d 30 30 30 30 30 30 30 30 76 00 00 00 28 00 |BM00000000v...(.|
00000010 00 00 00 00 01 00 00 00 01 00 01 00 04 00 00 00 |................|
*
00000021
Thanks for the detailed report. Note that this only happens when the fallback BMP loader is used; in general, img2txt
should be built with the Imlib2 library (autodetected by ./configure
).
Following vulnerability has been reported to Red Hat issue tracker:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20545 https://bugzilla.redhat.com/show_bug.cgi?id=1652621