![]() ![]() This is only exploitable if the color_cache_bits value defines which size to use. ![]() The OOB write to the undersized array happens in ReplicateValue. When BuildHuffmanTable() attempts to fill the second-level tables it may write data out-of-bounds. Start using electron in your project by running npm i electron. Latest version: 27.0.3, last published: a day ago. libwebp allows codes that are up to 15-bit ( MAX_ALLOWED_CODE_LENGTH). Version 25.3.2 License MIT Unpacked Size 829 kB Total Files 8 Last publish 10 hours ago Collaborators Try on RunKit Report malware Build cross platform desktop apps with JavaScript, HTML, and CSS. The kTableSize array only takes into account sizes for 8-bit first-level table lookups but not second-level table lookups. The color_cache_bits value defines which size to use. An attacker can craft a special WebP lossless file that triggers the ReadHuffmanCodes() function to allocate the HuffmanCode buffer with a size that comes from an array of precomputed sizes: kTableSize. Electron 26.2.4 (32-bit) Date released: (2 weeks ago) Download. Electron 26.3.0 (32-bit) Date released: (one week ago) Download. Electron 27.0.0 (32-bit) Date released: (3 days ago) Download. Electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS.Īffected versions of this package are vulnerable to Heap-based Buffer Overflow when the ReadHuffmanCodes() function is used. Features Screenshots Old Versions Download. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |