Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP4:GA
ImageMagick
ImageMagick-CVE-2017-11750,12676,12643.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File ImageMagick-CVE-2017-11750,12676,12643.patch of Package ImageMagick
Index: ImageMagick-6.8.8-1/coders/png.c =================================================================== --- ImageMagick-6.8.8-1.orig/coders/png.c 2018-01-12 13:44:37.427074741 +0100 +++ ImageMagick-6.8.8-1/coders/png.c 2018-01-12 13:47:44.954186147 +0100 @@ -4289,6 +4289,13 @@ static Image *ReadOneJNGImage(MngInfo *m if (length) { + if (length > GetBlobSize(image)) + { + DestroyJNG(NULL,&color_image,&color_image_info,&alpha_image,&alpha_image_info); + ThrowReaderException(CorruptImageError, + "InsufficientImageDataInFile"); + } + chunk=(unsigned char *) AcquireQuantumMemory(length,sizeof(*chunk)); if (chunk == (unsigned char *) NULL) @@ -5181,6 +5188,9 @@ static Image *ReadOneMNGImage(MngInfo* m if (length) { + if (length > GetBlobSize(image)) + ThrowReaderException(CorruptImageError, + "InsufficientImageDataInFile"); chunk=(unsigned char *) AcquireQuantumMemory(length,sizeof(*chunk)); if (chunk == (unsigned char *) NULL)
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor