2005.08.03 08:00 "[Tiff] Padding", by anil kumar

2005.08.03 14:20 "Re: [Tiff] malicious TIFF files", by Andrey Kiselev

On Wed, Aug 03, 2005 at 02:23:49AM -0700, Jeff Breidenbach wrote:

Anyone know of or have a testsuite of malicious TIFF files?

Things like headers that lie about the amount of data, extreme or illegal values, weird bits flipped, anything that would try to crash reader software.

Basically I'm looking for an image testsuite so I can harden software as much as possible against bad data. Trust no-one. :)


You can go through the libtiff's Bugzilla reports, some of them have broken files attached. Libtiff works smoothly with the most of these broken files (bacause bugs were fixed!), but if you have your own TIFF implementation this may have innterest for you.


Andrey V. Kiselev

Home phone: +7 812 5970603 ICQ# 26871517