From f6b86096a548875a30bdc63e23d2606da58b8281 Mon Sep 17 00:00:00 2001
From: Lucas CHOLLET <lucas.chollet@free.fr>
Date: Tue, 9 Jan 2024 17:57:30 -0500
Subject: [PATCH] LibGfx/TIFF: Prevent the CCITT decoder to run on non bilevel
 image

---
 Userland/Libraries/LibGfx/ImageFormats/TIFFLoader.cpp | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/Userland/Libraries/LibGfx/ImageFormats/TIFFLoader.cpp b/Userland/Libraries/LibGfx/ImageFormats/TIFFLoader.cpp
index 2a0eff3a4c..b4e42709ed 100644
--- a/Userland/Libraries/LibGfx/ImageFormats/TIFFLoader.cpp
+++ b/Userland/Libraries/LibGfx/ImageFormats/TIFFLoader.cpp
@@ -270,8 +270,12 @@ private:
             break;
         }
         case Compression::CCITT: {
+            // Section 8: Baseline Field Reference Guide
+            // BitsPerSample must be 1, since this type of compression is defined only for bilevel images.
             if (m_metadata.bits_per_sample()->size() > 1)
-                return Error::from_string_literal("TIFFImageDecoderPlugin: CCITT image with BitsPerSample greater than one, aborting...");
+                return Error::from_string_literal("TIFFImageDecoderPlugin: CCITT image with BitsPerSample greater than one");
+            if (m_metadata.photometric_interpretation() != PhotometricInterpretation::WhiteIsZero && m_metadata.photometric_interpretation() != PhotometricInterpretation::BlackIsZero)
+                return Error::from_string_literal("TIFFImageDecoderPlugin: CCITT compression is used on a non bilevel image");
 
             ByteBuffer decoded_bytes {};
             auto decode_ccitt_1D_strip = [&](u32 num_bytes) -> ErrorOr<ReadonlyBytes> {