xymp
/
exiv2
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8,276 Commits
2 Branches
0 Tags
119 MiB
v0.27.3
main
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '137ea080b5'
${ noResults }
Commit Graph

338 Commits (137ea080b51fb48a7eb1b513d2d565868ccdf68f)

Author SHA1 Message Date
Kevin Backhouse b35c43e7c2 Remove call to atol, which might read off the end of the buffer. (#870) 6 years ago
Kevin Backhouse 9092b422e6 Prevent out-of-bounds read. (#868) 6 years ago
Kevin Backhouse 6068df4c01 Add better bounds checking in PngImage::printStructure(). (#862) 6 years ago
Kevin Backhouse 109d5df7ab Check bounds of jpg_img_off and jpg_img_len. (#858) 6 years ago
Kevin Backhouse 1c1436e94e Add bounds check of resourceSize. (#856) 6 years ago
Kevin Backhouse 80cd0d2990 Add bounds check on allocation size. (#854) 6 years ago
Kevin Backhouse fe538e9438 Check bounds in XMP SDK (#852) 
* Check bounds of month and day.

* Add some more bounds checks.

* Fix test failure in clang.
 6 years ago
Kevin Backhouse 81ae213c71 Check bounds of allocation size. (#848) 6 years ago
Kevin Backhouse 7798ae2557 Throw an exception if the data location is invalid. (#842) 6 years ago
Kevin Backhouse 8dc87a1214 Add bounds check. (#840) 6 years ago
Kevin Backhouse d3e69f6d2c Add bounds check on allocation size. 6 years ago
Kevin Backhouse c0ecc2ae36 Avoid integer overflow. 6 years ago
D4N d20a0a7b57 Update tests/bugfixes/github/test_issue_791.py 
Co-Authored-By: kevinbackhouse <kev@semmle.com>
 6 years ago
Kevin Backhouse caa4e6745a Avoid negative integer overflow when `filesize < io_->tell()`. 
This fixes #791.
 6 years ago
clanmills db870755b9 fix #818. Restore 0.25 behaviour of `$ exiv2 -g image ...` to apply grep to keys. 6 years ago
Kevin Backhouse 8cd95e2218 Avoid negative integer overflow when `chunkLength == 0`. 
This fixes #789.
 6 years ago
Kevin Backhouse 6fa2e31206 Avoid negative integer overflow when `iccOffset > chunkLength`. 
This fixes #790.
 6 years ago
D4N adfc01f2e0 Update tests/bugfixes/github/test_issue_742.py 
Co-Authored-By: piponazo <piponazo@gmail.com>
(cherry picked from commit 39d8904696338d5bd4a9c7e9a96a798a791d0973)
 6 years ago
Luis Diaz Mas f33d8daaa0 Add regression test for #742 
(cherry picked from commit 885dd2a7437b946c975f2a37c9ccaecc1b91fc95)
 6 years ago
Dan Čermák 7bd929de31
[tests] Add regression test for #756 6 years ago
Dan Čermák a557c7f477
[tests] Add regression test for second bug from #590 6 years ago
Luis Diaz Mas fce84fdfdf Adapt test after updating nikon lens database 7 years ago
Luis Díaz Más dc04cc92eb Add test reproducer for #561 7 years ago
Luis Diaz Mas 9a84d4b64f Skip python tests using -pR 7 years ago
Luis Díaz Más 2ea9039879 Adapt fujifilm regression tests 7 years ago
Luis Diaz Mas b07c480a0a Add regression test for #511 7 years ago
Luis Diaz Mas b6bc4262c4 Add regression test for #426 7 years ago
Luis Díaz Más 274b65a671 Add reproducer for #460 7 years ago
Luis Díaz Más 3f97960a1c Add reproducer for #457 7 years ago
Dan Čermák f6d775b400 [testsuite] Add reproducers for #263 
This issue got resolved by #180 and #461.
 7 years ago
Dan Čermák d224f897b0 [testsuite] Add reproducer for #216 
The bug got resolved by PR #461 (slices).
 7 years ago
Dan Čermák eeb520bf39 [testsuite] Add reproducer for second bug from #159 
The bug described in the issue got resolved by PR #461 (slices).
 7 years ago
Dan Čermák 1af8e2875e [testsuite] Add reproducers for CVE-2017-17724 & #209, #211 7 years ago
Roberto C. Sánchez c03f73268f Prevent SIGABRT on excessive subBox length in jp2image.cpp 
This fixes CVE-2018-9145
 7 years ago
Dan Čermák 19bb57ff25 Add reproducer for #262 to the test suite 7 years ago
Dan Čermák 75415693d8 [testsuite] Update testsuite after printStructure deletion 7 years ago
Luis Díaz Más 7d32da890b Add remaining pocs for the issue 428 and adapt the regression test 7 years ago
Luis Díaz Más f5b40f3e82 Fix more issues in PngChunk::readRawProfile 7 years ago
Luis Díaz Más a6a1c31140 Add integration test to reproduce the issue 7 years ago
Robin Mills 74bc0e0535 Changes for cross-platform getopt 7 years ago
Dan Čermák c7a3a57aff [testsuite] Port redmine issue #1137 (requires stdin passing) 7 years ago
Dan Čermák 872e158173 [testsuite] Port redmine issue 1043 
This test used shell wildcards, which we work around by creating the
list of files to process manually.
 7 years ago
Dan Čermák bf43cbbccc [testsuite] Set env var TZ in redmine issue 1054 & remove skip 
The manual export TZ=UTC in run.sh is thereby no longer needed
 7 years ago
Dan Čermák 116f5fe5bd [testsuite] Port redmine issue 1074 using the binary output feature 7 years ago
Dan Čermák dadd1d19f9 Add reproducer for #400 to the test suite 7 years ago
Luis Diaz Mas 3d35b93fc0 Skip test 1054 unless timezone is UTC 7 years ago
Luis Diaz Mas 145f8fc456 Port redmine issues from the bash test suite to the python one. 
* Port redmine issue 1024
 * Port redmine issue 1026
 * Port redmine issue 1040
 * Port redmine issue 1044
 * Port redmine issue 1053
 * Port redmine issue 1054 (not finished yet; I found some issues there)
 * Port redmine issue 1058
 * Port redmine issue 1062
 * Port redmine issue 1080
 * Port redmine issue 1108
 * Port redmine issue 1112
 * Port redmine issue 1114
 * Port redmine issue 1122
 * Port redmine issue 1140
 * Port redmine issue 1144
 * Port redmine issue 1145
 * Port redmine issue 1153
 * Port redmine issue 1155
 * Port redmine issue 1166
 * Port redmine issue 1167
 * Port redmine issue 1170
 * Replace escaped chars in 1054
 * Add brackets in exiv2json::main()
 * Link all sample apps against exiv2lib
 * Changes in 1054
 * test 1054: fix dates depending on Local time
 * Do not run make with VERBOSE=1
 * Use system_tests.path
 * Fix windows issues with quotes
 * Use system_tests.path
 * Use itertools to simplify test code
 7 years ago
Dan Čermák e67910a669 [tests] Change name of test for #365 and #366 
Issues got a CVE assigned
 7 years ago
Dan Čermák f522cbf460 [testsuite] Add reproducer for #378/CVE-2018-14046 to the testsuite 7 years ago
Dan Čermák b517f2e13b Add regression test for #366 to the testsuite 7 years ago
Dan Čermák 9b08354aca Add reproducer for #365 to the testsuite 7 years ago
Dan Čermák 39b7151b2e [testsuite] Port redmine issues 831 to 937 to the new testsuite 7 years ago
Dan Čermák 7e1cd7d1b6 [testsuite] Fix name of regression test #283 
issue got a CVE assigned
 7 years ago
Luis Diaz Mas 5bd26ee82b Port redmine issues 1179-1305 
- Authorship: Luis Díaz Más & Dan Čermák
 7 years ago
Dan Čermák d7f4453dbd [testsuite] Remove usage of $cat via hooks 7 years ago
Dan Čermák 23e29e9527 [testsuite] Use system_tests.path() in some test cases 7 years ago
Luis Diaz Mas 8eca055058 Add POC + regression test. 
Note that we override here the method check_no_ASAN_UBSAN_errors to also
analyze the last two lines of got_stderr.
 7 years ago
Luis Díaz Más b8b94dc67a Escape characters properly once we started using python literals 7 years ago
Luis Díaz Más 48078e9c8b Fix tests on windows by using os.path.join 7 years ago
Luis Díaz Más 72faa7331d Fix issues with python strings & literals 7 years ago
Dan Čermák f55cdce761 [testsuite] Port redmine issues 498-825 7 years ago
Dan Čermák 2356984274 [testsuite] Ported redmine bugfixes 426-495 7 years ago
Luis Diaz Mas 2fb00c8a16 Analyze minimum needed number of null separators in PngChunk::parseTXTChunk 
This commit fixes the heap-buffer-overflow in PngChunk::parseTXTChunk.

According to the specification:
http://www.libpng.org/pub/png/spec/1.2/PNG-Chunks.html

There must be 2 null separators when we start to analyze the language tag.
 7 years ago
Luis Diaz Mas 234e5794f6 Add tests for #306 7 years ago
Daniel Zucchetto cb5135f772 Add test for Canon M100 ModelID 7 years ago
Robin Mills 4239ff6734 Test for Tamron SP AF 150-600mm F/5-6.3 VC USD G2 (A022) for Nikon 7 years ago
Dan Čermák 11cd1eabf8 [testsuite] Addapt tests to new test suite structure 7 years ago
Luis Diaz Mas ffab622633 Add reproducer for #247 7 years ago
Luis Diaz Mas 08aa27ae37 Add reproducers for #253 and #246 7 years ago
Dan Čermák 1f32207271 [testsuite] rename test_issue_208 -> test_CVE_2017_17722 
the issue got a CVE assigned
 7 years ago
Dan Čermák 3b01d5205a [testsuite] Port all regression tests for github issues 7 years ago
Dan Čermák 3cbb031442 [testsuite] Unified CVE test cases 7 years ago
Dan Čermák e597e5b811 [testsuite] Fixed CVE number 7 years ago
Dan Čermák c754ca6d14 [testsuite] Corrected class name, issue had no CVE assigned 7 years ago
Dan Čermák 71f9a24027 [testsuite] Unified variable names 7 years ago
Dan Čermák 48982697b0 Add reproducer for CVE-2017-1000126 to the test suite 7 years ago
Dan Čermák 59b148aee9 Add regression test for CVE-2017-18005 7 years ago
Dan Čermák cabf756553 Add reproducer for #170 to the test suite 7 years ago
Dan Čermák 73ac02d7f2 Added test for Sigma lenses 7 years ago
Dan Čermák 3965a44df2 Replace error variable names in test suite with enum error codes 7 years ago
Dan Čermák ead7f309b0 Added reproducer for CVE-2017-1000127 7 years ago
Dan Čermák 72de0f96f3 Added reproducer for CVE-2018-4868 to the test suite 7 years ago
Robin Mills a1f1989cb5
Merge branch 'master' into master 7 years ago
Dan Čermák 80c4d95171 Add regression test for CVE 2017-17669 8 years ago
Michał Walenciak 421c6d6723 improvements for issue #208 8 years ago
Michał Walenciak dba9fba725 test for issue #208 8 years ago
Dan Čermák 9900f523fe Added reproducer for #201 to the test suite 8 years ago
Dan Čermák 085c9715fc Added some example test cases to the new test suite 8 years ago