Current Events > Google Pixel cropping vulnerability may lead to your photos being uncropped

Topic List	Page List: 1
Anteaterking 03/19/23 4:16:04 PM #1:	https://twitter.com/ItsSimonTime/status/1636857478263750656 // https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html Basically the gist of this is that based on the way that the photo editing software "Markup" works, when you crop a photo it leaves remnants of the original. If you then upload that picture to something like Twitter, they already recompress your photo in their format and strip some of the metadata fields from it. But one service that does not do this is Discord. So any of you who have cropped photos from your Google phone and sent them to Discord you might want to go in and delete those pictures. --- http://i18.photobucket.com/albums/b136/Anteaterking/scan00021.jpg http://i18.photobucket.com/albums/b136/Anteaterking/scan00021.jpg <cite>Anteaterking posted [p:972278302] in Google Pix... [t:80384525]...</cite> <quote>https://twitter.com/ItsSimonTime/status/1636857478263750656//https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.htmlBasically the gist of this is that based on the way that the photo editing software "Markup" works, when you crop a photo it leaves remnants of the original. If you then upload that picture to something like Twitter, they already recompress your photo in their format and strip some of the metadata fields from it. But one service that does not do this is Discord.So any of you who have cropped photos from your Google phone and sent them to Discord you might want to go in and delete those pictures.</quote> ... Copied to Clipboard!
Kombucha 03/19/23 4:19:50 PM #2:	That's pretty crazy. I can't think of any past instances where this would present itself as a vulnerability to me personally, thankfully. --- http://www.last.fm/user/walkingishonest <cite>Kombucha posted [p:972278370] in Google Pix... [t:80384525]...</cite> <quote>That's pretty crazy. I can't think of any past instances where this would present itself as a vulnerability to me personally, thankfully.</quote> ... Copied to Clipboard!
#3	Post #3 was unavailable or deleted.
Anteaterking 03/19/23 4:22:22 PM #4:	Also I haven't really dug into the actual code, but I think I understand the surrounding concepts enough that I might be able to answer technical questions people have, so feel free. No guarantees though. --- http://i18.photobucket.com/albums/b136/Anteaterking/scan00021.jpg http://i18.photobucket.com/albums/b136/Anteaterking/scan00021.jpg <cite>Anteaterking posted [p:972278426] in Google Pix... [t:80384525]...</cite> <quote>Also I haven't really dug into the actual code, but I think I understand the surrounding concepts enough that I might be able to answer technical questions people have, so feel free. No guarantees though.</quote> ... Copied to Clipboard!
IdiotMachine 03/19/23 4:23:13 PM #5:	lol Pixels fail again --- https://i.imgur.com/XNEdLrJ.png <cite>IdiotMachine posted [p:972278443] in Google Pix... [t:80384525]...</cite> <quote>lol Pixels fail again</quote> ... Copied to Clipboard!
COVxy 03/19/23 4:25:19 PM #6:	Seems wild that the crop maintains the original data. There are very few reasons to want that functionality. --- =E[(x-E[x])(y-E[y])] <cite>COVxy posted [p:972278487] in Google Pix... [t:80384525]...</cite> <quote>Seems wild that the crop maintains the original data. There are very few reasons to want that functionality.</quote> ... Copied to Clipboard!
ellis123 03/19/23 4:31:35 PM #7:	COVxy posted... Seems wild that the crop maintains the original data. There are very few reasons to want that functionality. It's because the Pixel 7 switched codebase and sends the "do not truncate" call instead of the "truncate" call when storing pictures. It isn't the desired thing and it is something that happened because of the switch from 6 to 7 and wasn't updated. --- "A shouted order to do something of dubious morality with an unpredictable outcome? Thweeet!" My FC is in my profile. <cite>ellis123 posted [p:972278604] in Google Pix... [t:80384525]...</cite> <quote>COVxy posted... </cite><quote>Seems wild that the crop maintains the original data. There are very few reasons to want that functionality.</quote>It's because the Pixel 7 switched codebase and sends the "do not truncate" call instead of the "truncate" call when storing pictures. It isn't the desired thing and it is something that happened because of the switch from 6 to 7 and wasn't updated.</quote> ... Copied to Clipboard!
Gritty 03/19/23 4:32:12 PM #8:	COVxy posted... Seems wild that the crop maintains the original data. There are very few reasons to want that functionality. My guess is they send a variable of the cropped image leaving full metadata that could uncrop. <cite>Gritty posted [p:972278622] in Google Pix... [t:80384525]...</cite> <quote>COVxy posted... </cite><quote>Seems wild that the crop maintains the original data. There are very few reasons to want that functionality.</quote>My guess is they send a variable of the cropped image leaving full metadata that could uncrop. </quote> ... Copied to Clipboard!
WhisperWolf2005 03/19/23 4:32:35 PM #9:	Lol Pixel <cite>WhisperWolf2005 posted [p:972278627] in Google Pix... [t:80384525]...</cite> <quote>Lol Pixel </quote> ... Copied to Clipboard!
Anteaterking 03/19/23 4:33:04 PM #10:	COVxy posted... Seems wild that the crop maintains the original data. There are very few reasons to want that functionality. In this case, it's because instead of "overwrite this file with this smaller file" they essentially (accidentally) did "overwrite the first n bytes of this file with the smaller file, but then leave the rest". But this isn't even the first example of cropping not doing what it's supposed to throughout. Photoshop used to have its EXIF thumbnail not automatically update when you cropped things, so sitting the data of your photo was a smaller thumbnail of your full photo. This led to some Tech TV host posting a suggestive photo of herself that was a cropped nude, but had the full nude thumbnail in the EXIF data. --- http://i18.photobucket.com/albums/b136/Anteaterking/scan00021.jpg http://i18.photobucket.com/albums/b136/Anteaterking/scan00021.jpg <cite>Anteaterking posted [p:972278638] in Google Pix... [t:80384525]...</cite> <quote>COVxy posted... </cite><quote>Seems wild that the crop maintains the original data. There are very few reasons to want that functionality.</quote>In this case, it's because instead of "overwrite this file with this smaller file" they essentially (accidentally) did "overwrite the first n bytes of this file with the smaller file, but then leave the rest".But this isn't even the first example of cropping not doing what it's supposed to throughout. Photoshop used to have its EXIF thumbnail not automatically update when you cropped things, so sitting the data of your photo was a smaller thumbnail of your full photo. This led to some Tech TV host posting a suggestive photo of herself that was a cropped nude, but had the full nude thumbnail in the EXIF data.</quote> ... Copied to Clipboard!
Questionmarktarius 03/19/23 4:35:06 PM #11:	The photo given isn't cropped, it' just been drawn over by a not-quite-opaque marker too. This has be a know issue for awhile: https://ios.gadgethacks.com/how-to/warning-sensitive-info-you-black-out-images-can-be-revealed-with-few-quick-edits-your-iphone-0333975/ https://freedom.press/training/redacting-photos-on-the-go/ <cite>Questionmarktarius posted [p:972278673] in Google Pix... [t:80384525]...</cite> <quote>The photo given isn't cropped, it' just been drawn over by a not-quite-opaque marker too.This has be a know issue for awhile: https://ios.gadgethacks.com/how-to/warning-sensitive-info-you-black-out-images-can-be-revealed-with-few-quick-edits-your-iphone-0333975/https://freedom.press/training/redacting-photos-on-the-go/</quote> ... Copied to Clipboard!
Tyranthraxus 03/19/23 4:38:27 PM #12:	Good thing I don't use Google photos lmao --- It says right here in Matthew 16:4 "Jesus doth not need a giant Mecha." https://i.imgur.com/dQgC4kv.jpg <cite>Tyranthraxus posted [p:972278738] in Google Pix... [t:80384525]...</cite> <quote>Good thing I don't use Google photos lmao </quote> ... Copied to Clipboard!
ellis123 03/19/23 4:39:09 PM #13:	Tyranthraxus posted... Good thing I don't use Google photos lmao It's fine. The one Question posted is for iPhone. --- "A shouted order to do something of dubious morality with an unpredictable outcome? Thweeet!" My FC is in my profile. <cite>ellis123 posted [p:972278749] in Google Pix... [t:80384525]...</cite> <quote>Tyranthraxus posted... </cite><quote>Good thing I don't use Google photos lmao</quote>It's fine. The one Question posted is for iPhone.</quote> ... Copied to Clipboard!
Questionmarktarius 03/19/23 4:54:43 PM #14:	The marker tool is wonky on droid as well. JPEG also likes to sometimes save a thumbnail in the metadata, which may not be refreshed after editing. https://docs.oracle.com/javase/7/docs/api/javax/imageio/metadata/doc-files/jpeg_metadata.html#thumbs <cite>Questionmarktarius posted [p:972279030] in Google Pix... [t:80384525]...</cite> <quote>The marker tool is wonky on droid as well.JPEG also likes to sometimes save a thumbnail in the metadata, which may not be refreshed after editing.https://docs.oracle.com/javase/7/docs/api/javax/imageio/metadata/doc-files/jpeg_metadata.html#thumbs</quote> ... Copied to Clipboard!
Topic List	Page List: 1

Current Events > Google Pixel cropping vulnerability may lead to your photos being uncropped (+) Yeah! (+)

Current Events > Google Pixel cropping vulnerability may lead to your photos being uncropped