upstream/mattermost
1
0
Fork 0
mirror of https://github.com/mattermost/mattermost.git synced 2026-02-18 18:18:23 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 5

MM-52720: use an io.LimitedReader in gif frame counting (#23372)

Browse source 
* MM-52720: use an io.LimitedReader in gif frame counting

* Address review feedback

---------

Co-authored-by: Mattermost Build <build@mattermost.com>
This commit is contained in:
Juho Nurminen 2023-05-11 12:47:07 +03:00 committed by GitHub
parent 6d18b69abb
commit fc46a296ce
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 16 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
server/channels/utils/imgutils/gif.go
View file

@ -366,7 +366,7 @@ func (d *decoder) readGraphicControl() error {
}
func (d *decoder) readImageDescriptor() error {
err := d.checkImageFromDescriptor()
w, h, err := d.readImageDimensionsFromDescriptor()
if err != nil {
return err
}
@ -390,7 +390,7 @@ func (d *decoder) readImageDescriptor() error {
lzwr := lzw.NewReader(br, lzw.LSB, int(litWidth))
defer lzwr.Close()
if _, err := io.Copy(io.Discard, lzwr); err != nil {
if _, err := io.Copy(io.Discard, io.LimitReader(lzwr, int64(w*h))); err != nil {
if err != io.ErrUnexpectedEOF {
return fmt.Errorf("gif: reading image data: %v", err)
}
@ -428,9 +428,9 @@ func (d *decoder) readImageDescriptor() error {
return nil
}
func (d *decoder) checkImageFromDescriptor() error {
func (d *decoder) readImageDimensionsFromDescriptor() (int, int, error) {
if err := readFull(d.r, d.tmp[:9]); err != nil {
return fmt.Errorf("gif: can't read image descriptor: %s", err)
return 0, 0, fmt.Errorf("gif: can't read image descriptor: %s", err)
}
left := int(d.tmp[0]) + int(d.tmp[1])<<8
top := int(d.tmp[2]) + int(d.tmp[3])<<8
@ -455,10 +455,10 @@ func (d *decoder) checkImageFromDescriptor() error {
// imageBounds.Max (d.width, d.height) and not frameBounds.Min (left, top)
// against imageBounds.Min (0, 0).
if left+width > d.width || top+height > d.height {
return errors.New("gif: frame bounds larger than image bounds")
return 0, 0, errors.New("gif: frame bounds larger than image bounds")
}
return nil
return width, height, nil
}
func (d *decoder) readBlock() (int, error) {

10
server/channels/utils/imgutils/gif_test.go
View file

@ -86,4 +86,14 @@ func TestCountGIFFrames(t *testing.T) {
assert.Error(t, err)
})
t.Run("should return an error for excessively large compressed data", func(t *testing.T) {
b, err := readTestFile(t, "large_lzw_frame.gif")
require.NoError(t, err)
_, err = CountGIFFrames(bytes.NewReader(b))
assert.Error(t, err)
assert.Equal(t, errTooMuch, err)
})
}

BIN
server/tests/large_lzw_frame.gif Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 7 MiB