php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #75076 bug #74435 has not been fixed
Submitted: 2017-08-15 03:35 UTC Modified: 2017-08-24 09:30 UTC
From: varsleak at gmail dot com Assigned: cmb (profile)
Status: Not a bug Package: GD related
PHP Version: 7.1.8 OS: Ubuntu 16.40 x64
Private report: No CVE-ID: None
View Developer Edit
 [2017-08-15 03:35 UTC] varsleak at gmail dot com 
Description:
------------
I tested bug #74435, it has not been fixed, the details are as follows:

replease ext/gd/tests/bug74435.gif with https://github.com/varsleak/varsleak-vul/blob/master/php-src-vul/issus_75076/issus75076.gif and run `make test|grep bug74435` results is a failure.

➜  php-src.orig git:(PHP-7.1.8) ✗ make test|grep bug74435
FAIL Bug #74435 (Buffer over-read into uninitialized memory) [ext/gd/tests/bug74435.phpt]



Test script:
---------------
same as https://bugs.php.net/bug.php?id=74435

Expected result:
----------------
PASS Bug #74435 (Buffer over-read into uninitialized memory) [ext/gd/tests/bug74435.phpt]

Actual result:
--------------
FAIL Bug #74435 (Buffer over-read into uninitialized memory) [ext/gd/tests/bug74435.phpt]

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2017-08-16 16:35 UTC] cmb@php.net
-Assigned To: +Assigned To: cmb
 [2017-08-16 17:23 UTC] cmb@php.net
-Status: Assigned +Status: Feedback
 [2017-08-16 17:23 UTC] cmb@php.net 
The fact that the test case fails for this image is irrelevant.
Please provide a simple test script, and clear information on what
you expect the script to do, and what it actually does.

Please also note, that libgd is not supposed to import animated
GIFs. It only reads the first image of the GIF file.
 [2017-08-24 06:16 UTC] varsleak at gmail dot com
-Status: Feedback +Status: Closed
 [2017-08-24 06:16 UTC] varsleak at gmail dot com 
Not a issus.
 [2017-08-24 09:30 UTC] cmb@php.net
-Status: Closed +Status: Not a bug -Type: Security +Type: Bug
 
PHP Copyright © 2001-2025 The PHP Group
All rights reserved. 		Last updated: Fri May 09 21:01:27 2025 UTC