set max icc profile size

salarkhan · salarkhan · commit 3a1565c5fd2e · 2025-12-19T22:18:02.000Z
diff --git a/color_info.cpp b/color_info.cpp
@@ -1,10 +1,13 @@
 #include "color_info.hpp"
 #include <lcms2.h>
 
+// Maximum ICC profile size we're willing to parse (1MB)
+static const size_t MAX_ICC_PROFILE_SIZE = 1024 * 1024;
+
 // Check if ICC profile indicates HDR (PQ or HLG transfer function)
 bool is_hdr_transfer_function(const uint8_t* icc_data, size_t icc_len)
 {
-    if (!icc_data || icc_len == 0) {
+    if (!icc_data || icc_len == 0 || icc_len > MAX_ICC_PROFILE_SIZE) {
         return false;
     }
 

Original file line number	Diff line number	Diff line change
`@@ -1,10 +1,13 @@`
`1`	`1`	`#include "color_info.hpp"`
`2`	`2`	`#include <lcms2.h>`
`3`	`3`
	`4`	`+// Maximum ICC profile size we're willing to parse (1MB)`
	`5`	`+static const size_t MAX_ICC_PROFILE_SIZE = 1024 * 1024;`
	`6`	`+`
`4`	`7`	`// Check if ICC profile indicates HDR (PQ or HLG transfer function)`
`5`	`8`	`bool is_hdr_transfer_function(const uint8_t* icc_data, size_t icc_len)`
`6`	`9`	`{`
`7`		`- if (!icc_data \|\| icc_len == 0) {`
	`10`	`+ if (!icc_data \|\| icc_len == 0 \|\| icc_len > MAX_ICC_PROFILE_SIZE) {`
`8`	`11`	`return false;`
`9`	`12`	`}`
`10`	`13`