Nick M. Mckenna

**Name of the Vulnerable Software and Affected Versions** Open Whisper Signal versions through 2.29.0 **Description** The issue arises from the image rendering component, specifically the `createGenericPreview` function, which fails to check for unreasonably large images before manipulating them. This allows an attacker to send a large image to a user, causing the device to exhaust its available memory when the image is displayed, resulting in a forced restart. **Recommendations** For versions through 2.29.0, as a temporary workaround, consider disabling the image preview feature until a patch is available. Restrict the receipt of large images to minimize the risk of exploitation.