The Data Compression News Blog

Your daily update on the most recent compression techniques, algorithms, patents, products, tools and events.

Subscribe

Posts: RSS Feed
Comments: RSS Feed

Sponsored Links

Recent Posts

  • Bijective BWT (2 Comments)

    David Scott has written a bijective BWT transform, which brings all the advantages of bijectiveness to BWT based compressors. Among other things, making BWT more suitable for compression-before-encryption and also give (slightly) better compression.

  • Asymmetric Binary System (107 Comments)

    Jarek Duda’s “Asymmetric Binary System” promises to be an alternate to arithmetic coding, having all the advantages, but being much simpler. Matt has coded a PAQ based compressor using ABS for back-end encoding. Update: Andrew Polar has written an alternate implementation of ABS.

  • Precomp: More Compression for your Compressed Files

    So many of today’s files are already compressed (using old, outdated algorithms) that newer algorithms don’t even get a chance to touch them. Christian Schneider’s Precomp comes to rescue by undoing the harm.

  • On2 Technologies is Hiring

    There aren’t too many companies working on cutting edge codecs, and of those few this one is hiring. Best of luck.

  • China’s AVS Specifications Available (2 Comments)

    Its old news that China has developed their own Advanced Video Standard to avoid high licensing fees. English translation of the standard is now available, along with the IPR policy. Finally something technical that you can get your hands on to feed your appetite.

The hunt is on for file format bugs

Posted by Sachin Garg on 31st July 2005 | Permanent Link

ZDnet has this interesting article on how flaws in the way applications handle compressed file formats are drawing interest among security researchers, according to speakers at the Black Hat security conference here.

They have speculated that “There could be a significant increase in the discovery of such flaws” and one has to agree with this.

iDefense, a security intelligence company, is making available tools that let researchers automate the discovery of file format vulnerabilities. The company released the tools on Thursday in conjunction with Black Hat.

One Response to “The hunt is on for file format bugs”

  1. Apple ImageIO Buffer Overflow in Processing JPEG2000 Images - The Data Compression News Blog - c10n.info Says:
    October 2nd, 2006 at 1:58 pm

    […] Developers of applications or core libraries which handle such file formats definitely need to be more careful. Last year when we saw such issues in more widely deployed GIF and JPEG formats, iDefense, a security intelligence company, in conjunction with Black Hat, made available tools that let researchers automate the discovery of file format vulnerabilities. […]

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>

This entry was posted on Sunday, July 31st, 2005 at 11:26 am by Sachin Garg. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.