By pierrec
You’re overdoing it a bit. I believe the most popular API/library for server-side manipulation of images is ImageMagick, and it has a few options for specifying limits that will easily protect against decompression bombs.
See more about this article by clicking the link here: https://news.ycombinator.com/item?id=10158974
pierrec comments on "420B file that uncompresses to a 141GB PNG image"
No comments:
Post a Comment