]> Cypherpunks repositories - gostls13.git/commitdiff
projects / gostls13.git / commitdiff
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: cb97fd7)
image/gif: be stricter on parsing graphic control extensions.
authorNigel Tao <nigeltao@golang.org>
Thu, 28 Apr 2016 09:01:48 +0000 (19:01 +1000)
committerNigel Tao <nigeltao@golang.org>
Thu, 28 Apr 2016 23:58:26 +0000 (23:58 +0000)
See Section 23. Graphic Control Extension of the spec:
https://www.w3.org/Graphics/GIF/spec-gif89a.txt

Change-Id: Ie78b4ff4aa97e1b332ade67ae4fa25f7c0770610
Reviewed-on: https://go-review.googlesource.com/22547
Reviewed-by: Rob Pike <r@golang.org>
src/image/gif/reader.go patch | blob | history
src/image/gif/reader_test.go patch | blob | history

diff --git a/src/image/gif/reader.go b/src/image/gif/reader.go
index 6bfc72e9741b6a747075c1138e617fb0215a5811..9a0852dbfd814a6c6bd292380dbc38ab83fd3d73 100644 (file)
--- a/src/image/gif/reader.go
+++ b/src/image/gif/reader.go
@@ -349,6 +349,9 @@ func (d *decoder) readGraphicControl() error {
        if _, err := io.ReadFull(d.r, d.tmp[:6]); err != nil {
                return fmt.Errorf("gif: can't read graphic control: %s", err)
        }
+       if d.tmp[0] != 4 {
+               return fmt.Errorf("gif: invalid graphic control extension block size: %d", d.tmp[0])
+       }
        flags := d.tmp[1]
        d.disposalMethod = (flags & gcDisposalMethodMask) >> 2
        d.delayTime = int(d.tmp[2]) | int(d.tmp[3])<<8
@@ -356,6 +359,9 @@ func (d *decoder) readGraphicControl() error {
                d.transparentIndex = d.tmp[4]
                d.hasTransparentIndex = true
        }
+       if d.tmp[5] != 0 {
+               return fmt.Errorf("gif: invalid graphic control extension block terminator: %d", d.tmp[5])
+       }
        return nil
 }
 
diff --git a/src/image/gif/reader_test.go b/src/image/gif/reader_test.go
index c294195b6f7661a9ee3cdece9036524bc71a997c..ee78a4071668d74a09c38594030e75b78d9c2876 100644 (file)
--- a/src/image/gif/reader_test.go
+++ b/src/image/gif/reader_test.go
@@ -97,7 +97,7 @@ func TestTransparentIndex(t *testing.T) {
        for transparentIndex := 0; transparentIndex < 3; transparentIndex++ {
                if transparentIndex < 2 {
                        // Write the graphic control for the transparent index.
-                       b.WriteString("\x21\xf9\x00\x01\x00\x00")
+                       b.WriteString("\x21\xf9\x04\x01\x00\x00")
                        b.WriteByte(byte(transparentIndex))
                        b.WriteByte(0)
                }
Go GOST TLS 1.3