How to use aCropalypse to uncover the secrets of your cropped photos on Google Pixel

How to use aCropalypse to uncover the secrets of your cropped photos on Google Pixel

by
5/5 - (51 votes)

Today, I would like to discuss the security vulnerability known as aCropalypse, or CVE-2023-21036. This problem mainly affects Google Pixel smartphone users who frequently crop their photos. The vulnerability allows data recovery from truncated PNG files, which may lead to the restoration of personal information deleted from images, including postal addresses or bank details. This could potentially be disturbing or even fascinating for some.

FrdHHYdakAADqzZ 2
https://twitter.com/ItsSimonTime/status/1636857478263750656

To illustrate this issue, let’s consider a scenario where you take a screenshot of an email that contains your personal address, and then crop the image to display only the product details while hiding your personal information. With the CVE-2023-21036 vulnerability, it is possible for a hacker to recover the deleted portion of the image and access your personal address.

So, how does this vulnerability work?

Essentially, the flaw takes advantage of the way PNG files are compressed with the zlib compression algorithm. Normally, it’s very difficult to decompress compressed data without knowing the specific Huffman tree used for the compression. However, in the case of this security flaw, it becomes possible to decompress the data by finding the start of a Huffman coding block. The process is relatively straightforward: the algorithm scans each binary offset, and when it finds the start of a Huffman block, it attempts to decompress the data from that point. If successful, it can recover any truncated data in the PNG file.

for each bit-offset:

if it doesn't look like the start of a dynamic huffman block:

skip this offset

kotlin

try decompressing from that offset:

    if the decompressed data looks plausible:

        return decompressed data!

catch decompression errors:

    continue

And that’s how you recover erased data from PNGs.

This vulnerability is due to an API issue at Google, where the “w” (write) option was used instead of “wt” (write with truncation). As a result, the original image is not truncated when it is cropped.

And if you want to play with it, there’s a little proof of concept here or this website that allows you to recover a complete image that has been cropped on a Google Pixel. That promises :).

In short, if the “crop” function you use in your favorite software goes through Google’s API, be vigilant until this problem is fixed.

Source

Mohamed SAKHRI

my name is Mohamed SAKHRI, and I am the creator and editor-in-chief of Easy Tech Tutorials. As a passionate technology enthusiast, I have been blogging for some time now, providing practical and helpful guides for various operating systems such as Windows, Linux, and macOS, as well as Android tips and tricks. Additionally, I also write about WordPress. I am currently 35 years old.

Leave a Comment

Easy Tech Tutorials

Easy Tech Tutorial (ETT) is a blog for quality tips and tutorials for all things tech for Windows, Linux, macOS, online tools, Android, and more!

Contact

Blog

About Us

Contact

Sitemap

Useful information

Contributor Writing Guidelines  

Ethics Policy

Corrections Policy 

Fact-Checking Policy  

© easy-tutorials.com | All rights reserved

Privacy Policy | Terms & Conditions