Welcome to my blog...It's more of an occasional-random-quirky-thought blog or a check-out-this-cool-link blog than one of those this-is-what-i-had-for-breakfast-today-and-these-are-my-feelings-about-life blogs and it's definitely not one of those awful i'm-useful-and-have-important-things-to-say-and-i'm-contributing-to-society blogs. Enjoy.

click here to see where the name 'crapweasel' came from
:: crapweasel ::
the official blog of
Dave Tompkins

RSS Feed RSS Feed

This page is powered by Blogger. Isn't yours?
For more miscellaneous news stories, you can read my shared items in Google Reader [rss]
Wednesday, February 25, 2009
JBIG2 Exploit
I just wanted to comment on the unfortunate publicity JBIG2 has been getting as the source of the exploit in the Adobe Acrobat Readers... As someone who was there when JBIG2 was being created... I am not surprised AT ALL. The JBIG2 stream with the arithmetic coder is a delicate house of cards that's designed for an error free environment, and it takes a fair amount of sophistication to do error detection (and error recovery is nearly impossible). I would have bet big money that it wouldn't be hard to crash Adobe's implementation, but there's no excuse for Adobe to have a JBIG2 implementation that's so easily exploitable. It's all just a shame that this is the most publicity JBIG2 has ever received. -sigh-