Skip to content

fix: use checked arithmetic in ICC tag parsing #607

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
veluca93 merged 1 commit into from
Jan 5, 2026
Merged

fix: use checked arithmetic in ICC tag parsing #607

veluca93 merged 1 commit into from
Jan 5, 2026

Conversation

@lilith
Copy link
Contributor

@lilith lilith commented Jan 2, 2026

Malformed ICC streams could trigger integer overflow when calculating tag offsets. This causes panics in debug builds and silent wraparound in release builds.

This uses checked_add/checked_mul to detect overflow and return InvalidIccStream instead.

Extracted from #602 as a standalone fix per review feedback.

@lilith
fix: use checked arithmetic in ICC tag parsing to prevent overflow
96d22c9 
Malformed ICC streams could trigger integer overflow in tag offset
calculations, causing panics in debug builds or silent wraparound
in release builds.

Changed to checked_add/checked_mul which return InvalidIccStream
error on overflow instead.
@github-actions
Copy link

github-actions bot commented Jan 2, 2026

Benchmark @ 96d22c9

MULTI-FILE BENCHMARK RESULTS (4 files)
  CPU architecture: x86_64
  WARNING: System appears noisy: high system load (2.63). Results may be unreliable.
Statistics:
  Confidence:               99.0%
  Max relative error:        3.0%

Comparing: cdb20484 (Base) vs 22c76e2f (PR)

File Base (MP/s) PR (MP/s) Δ%
bike.jxl 23.188 23.136 -0.22% ±2.9%
green_queen_modular_e3.jxl 8.126 8.125 -0.01% ±0.8%
green_queen_vardct_e3.jxl 20.248 20.270 +0.10% ±2.2%
sunset_logo.jxl 2.227 2.209 -0.83% ±0.4%

@veluca93 veluca93 merged commit 3728889 into libjxl:main Jan 5, 2026
16 of 17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@veluca93 veluca93 veluca93 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@lilith @veluca93