An issue was discovered in icoutils. A buffer overflow was observed in the "decode_ne_resource_id" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a failed memcpy. This affects wrestool.
Created attachment 1250877 [details] Reporter writeup
Created icoutils tracking bugs for this issue: Affects: fedora-all [bug 1422911]
Created attachment 1256407 [details] fixes memory issue triggered by wrong type cast This patch should fix the issue.
Hi Martin Has this been forwarded to upstream? Regards, Salvatore
Hi Salvatore, yes, I sent the patches to upstream but haven't received a reply yet.
Created icoutils tracking bugs for this issue: Affects: epel-6 [bug 1430609]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:0837 https://rhn.redhat.com/errata/RHSA-2017-0837.html