Exploiting aCropalypse: Recovering Truncated PNGs


This article assumes you’ve already heard about the aCropalypse vulnerability, aka CVE-2023-21036. If not, go read about it here (oops, this page doesn't exist yet. Read this tweet in the meantime).
For me, it all started with the following conversation:
At this point in time, Simon was asking the question in an abstract sense, so as not to give away the nature of the…

This story appeared on vidbuchanan.co.uk.
Read the Entire Internet on a Single Page. Join Now →