[Dailydave] More INFILTRATE planning, and an 0day.
Michal Zalewski
lcamtuf at coredump.cx
Wed Sep 26 18:30:16 EDT 2012
> (The 0day as promised in the subject line is attached. If you can't see
> it, then it worked!)
Did not work for me, shows as a regular JPEG, although I fiddled with
it a bit... looks like it's meant to target this code, right?
s += state.last_dc_val[ci];
state.last_dc_val[ci] = s;
/* Scale and output the coefficient (assumes jpeg_natural_order[0]=0) */
(*block)[0] = (JCOEF) (s << Al);
The bug is pretty subtle, took me a while to figure it out. Kudos.
/mz
More information about the Dailydave
mailing list