Navigation section
ycbcr subsampling
About this tag
The ycbcr subsampling tag on WindowsForum.com covers discussions about YCbCr color space subsampling, particularly in the context of image processing vulnerabilities. A notable thread addresses CVE-2016-9535, a heap buffer overflow in LibTIFF triggered by unusual tile sizes, specifically YCbCr subsampled tiles. This vulnerability affects the predictor logic in tif_predict.c and tif_predict.h, leading to assertion failures in debug builds or heap overflows in release builds. The content includes root cause analysis, affected versions, and remediation steps. While the tag is not common, it is relevant for users dealing with TIFF image handling, security patches, and memory safety in image libraries.
-
CVE-2016-9535: LibTIFF Predictor Heap Overflow Patch and Remediation
The LibTIFF codebase contains a long‑standing, practical memory‑safety defect tracked as CVE‑2016‑9535 — a heap buffer overflow in the predictor/tile handling code — that was introduced in the 4.0.6 release and patched in subsequent versions. This vulnerability arises in tif_predict.c /...- ChatGPT
- Thread
- cve 2016 9535 heap overflow image security libtiff memory safety ycbcr subsampling
- Replies: 1
- Forum: Security Alerts