Overview

File ImageMagick-CVE-2019-11506.patch of Package ImageMagick.12053

Index: ImageMagick-6.8.8-1/coders/mat.c
===================================================================
--- ImageMagick-6.8.8-1.orig/coders/mat.c	2019-04-30 07:58:35.406755855 +0200
+++ ImageMagick-6.8.8-1/coders/mat.c	2019-04-30 08:10:05.026163242 +0200
@@ -1647,13 +1647,21 @@ static MagickBooleanType WriteMATImage(c
 
       for (y=0; y < (ssize_t)image->columns; y++)
       {
+        size_t
+          length;
+
         p=GetVirtualPixels(image,y,0,1,image->rows,&image->exception);
         if (p == (const PixelPacket *) NULL)
           break;
-        (void) ExportQuantumPixels(image,(const CacheView *) NULL,quantum_info,
+        length=ExportQuantumPixels(image,(const CacheView *) NULL,quantum_info,
           z2qtype[z],pixels,exception);
-        (void) WriteBlob(image,image->rows,pixels);
+        if (length != image->columns)
+          break;
+        if (WriteBlob(image,image->rows,pixels) != image->rows)
+          break;
       }
+      if (y < (ssize_t) image->columns)
+        break;
       if (!SyncAuthenticPixels(image,exception))
         break;
     } while (z-- >= 2);
openSUSE Build Service is sponsored by
Places