From 521a88b66f0bd76c52fef0d84776478c0b0664d9 Mon Sep 17 00:00:00 2001 From: pommicket Date: Wed, 20 Sep 2023 23:38:34 -0400 Subject: - add overflow check for chunk length. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit this could have resulted in debug-only panics for maliciously crafted images. - add “impossible compressed size” check which slightly mitigates the problem of a malicious image causing you to allocate a shitton of memory. --- Cargo.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'Cargo.toml') diff --git a/Cargo.toml b/Cargo.toml index 40ad49e..0a0916c 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -6,7 +6,7 @@ categories = ["encoding", "graphics", "multimedia::images", "no-std::no-alloc"] keywords = ["png", "decoder", "image", "no_std", "no_alloc"] exclude = ["/test/large", "/benches/large.png"] license = "0BSD" -version = "0.1.0" +version = "0.1.1" edition = "2021" [dev-dependencies] -- cgit v1.2.3