[issue4317] Buffer overflow in imageop module

Amaury Forgeot d'Arc report at bugs.python.org
Thu Nov 13 23:57:50 CET 2008


New submission from Amaury Forgeot d'Arc <amauryfa at gmail.com>:

The interpreter sometimes segfaults when running the test suite, in 
test_imageop.
A more reliable crasher is:

>>> import imageop
>>> s = "A" * 32000
>>> imageop.rgb2rgb8(s, 1, len(s))

The failure was recently introduced by r66689, a "security fix" :-(
and backported today in 2.4!

This is a 2.4 release blocker. Patch is attached, please review.

----------
files: rgbcrash.diff
keywords: needs review, patch
messages: 75840
nosy: amaury.forgeotdarc
priority: release blocker
severity: normal
status: open
title: Buffer overflow in imageop module
type: crash
versions: Python 2.4, Python 2.6
Added file: http://bugs.python.org/file12001/rgbcrash.diff

_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue4317>
_______________________________________


More information about the Python-bugs-list mailing list