Microsoft KB3045171 Crash GDI+ System.Drawing.Drawing2D.AddString

[TifoziF1]

Enjoy:

 private void test_Click(object sender, EventArgs e)        {            string str = ")";            // also strings : ~ ` ! " ( ) [ ] { } = < >    have similar problems            System.Drawing.FontFamily fontFamily = new System.Drawing.FontFamily("Arial Black");            // Also Batang, BatangChe, Dotum, DotumChe, Goody Stout, Gulim, Gulim Che, Gungsuh, Gungsuh Che,            //      Windings, Windings 2, Wingdings 3, ZDingbats, Comic Sans MS have similar problems                        System.Drawing.Drawing2D.GraphicsPath path = new System.Drawing.Drawing2D.GraphicsPath();            path.AddString(str, fontFamily,  0, 128, new System.Drawing.Point(0, 0), new System.Drawing.StringFormat()); //CRASH !!                        // .... do some things like ...            System.Drawing.RectangleF rect = path.GetBounds();            // .... do some things             path.Dispose();        }

Προχθεσινό το KB3045171: https://support.microsoft.com/en-us/kb/3045171
 
Αντί να φτιάξουνε τον κώδικά τους σωστά πήγανε και κόψανε τους παραπάνω χαρακτηρες που χρησιμοποιούνται σε "scripting" ....
 

 

EDIT 05-22-2015: Microsoft released a fix for this, for systems with Windows2003 and up. See https://support.microsoft.com/en-us/kb/3065979

Έγινε επεξεργασία Μάϊος 22, 2015 από TifoziF1

[kpetros]

I dont get the joke 

Κανε μια εξηγηση για το βλεπουμε και εμεις που δεν ξερουμε XD

[TifoziF1]

Δεν είναι αστείο, μπορεί να έχετε εφαρμογές που δουλεύουν μια χαρά και μετά την εγκατάσταση του KB3045171 (windows update) να μην δουλεύουν.

[dan27]

We are seeing the same problem in our commercial apps.  Microsoft has introduced a bug in Gdi+ as part of KB3045171.  It appears they changed a loop index in the function cjFillPolygon from a signed value to an unsigned value.  This loop index counts down.  When it gets to 0 they decrement it once more causing an underflow.  It is then used to access an internal array past the end of the buffer.  This results in an access violation on Windows 7.

[TifoziF1]

We are seeing the same problem in our commercial apps.  Microsoft has introduced a bug in Gdi+ as part of KB3045171.  It appears they changed a loop index in the function cjFillPolygon from a signed value to an unsigned value.  This loop index counts down.  When it gets to 0 they decrement it once more causing an underflow.  It is then used to access an internal array past the end of the buffer.  This results in an access violation on Windows 7.

That's right and not only in windows 7. I have tested machines with windows XP and up and all are affected. As another one wrote here:

https://connect.microsoft.com/VisualStudio/feedback/details/1331855/kb3045171-crash-gdi-with-system-drawing-drawing2d-addstring

in the thread I have started, "This is a little ironic. They added a buffer overflow exploit in their security update..."

[TifoziF1]

Για την ώρα, ο μονος τρόπος αποφυγής του crash είναι να γίνει απεγκατάσταση του KB3045171 ! Περιμένουμε το fix από Microsoft

 

At the moment the only way to avoid this crash is to uninstall KB3045171 (instruct customers to do this also). We are still waiting Microsoft for a fix.

[TifoziF1]

Microsoft released a fix for this, for systems with Windows2003 and up. See https://support.microsoft.com/en-us/kb/3065979 A system restart is necessary after installing this update.

 

What about WindowsXP WEPOS ????

 

Η Microsoft, έβγαλε fix για συστήματα με Windows 2003 μέχρι και Windows Seven. https://support.microsoft.com/en-us/kb/3065979  Για windows XP WEPOS ομως nada !!!

Έγινε επεξεργασία Μάϊος 22, 2015 από TifoziF1