Overview

File GraphicsMagick-CVE-2016-6823.patch of Package GraphicsMagick.7782

Index: GraphicsMagick-1.3.20/coders/bmp.c
===================================================================
--- GraphicsMagick-1.3.20.orig/coders/bmp.c	2016-10-11 09:34:20.793563125 +0200
+++ GraphicsMagick-1.3.20/coders/bmp.c	2016-10-11 09:35:27.794600441 +0200
@@ -1599,8 +1599,11 @@ static unsigned int WriteBMPImage(const
 	ThrowWriterException(CoderError,ImageColumnOrRowSizeIsNotSupported,image);
       }
 
+    if ((image->columns != (signed int) image->columns) ||
+        (image->rows != (signed int) image->rows))
+      ThrowWriterException(ImageError,WidthOrHeightExceedsLimit,image);
     bmp_info.planes=1;
-    bmp_info.image_size=bytes_per_line*image->rows;
+    bmp_info.image_size=(unsigned long) bytes_per_line*image->rows;
     bmp_info.file_size+=bmp_info.image_size;
     bmp_info.x_pixels=75*39;
     bmp_info.y_pixels=75*39;
openSUSE Build Service is sponsored by
Places