Image sample triggers Windows Security

Question

Image sample triggers Windows Security

cgbeutler opened this issue 5 years ago · 4 comments

Running the example "image.exe" triggers a Windows Security issue

I am guessing this is being triggered by a library or something. Wanted to start a paper trail for posterity. Not sure if this maybe needs a mini investigation to see if this needs to be passed on to piston core or something to make sure unsafe code is not used, just in case. Don't want cargo or piston to get a bad name ;)

Answer 1 · 2019-10-11T20:03:50.000Z

You are the first one that reports a windows security trigger of this kind. There is no unsafe code in the Piston core, so the problem is not there.

Answer 2 · 2019-10-11T20:54:48.000Z

Bleh, I have poked at that thing for over an hour now. Windows Defender is so confusing and crappy. I really can't figure out what's happening with it. To make it even more confusing, image.exe seems to do a subset of what the others samples do, but they don't trigger anything. I'll dig again a little later.

Answer 3 · 2019-10-11T21:20:34.000Z

Perhaps there is something wrong with the image library. You can open up an issue here: https://github.com/image-rs/image

Answer 4 · 2019-10-12T15:27:05.000Z

That's also used by several other samples. My first thought was that find_folder may be using an unsafe credential checker, but most other samples that use an image also use find_folder. Also, it's a pretty popular lib. Ill try messing more with it. Hopefully I can figure it out.