Overview

File GraphicsMagick-CVE-2016-10070.patch of Package GraphicsMagick.6323

Index: GraphicsMagick-1.2.5/coders/mat.c
===================================================================
--- GraphicsMagick-1.2.5.orig/coders/mat.c	2008-06-11 02:06:41.000000000 +0200
+++ GraphicsMagick-1.2.5/coders/mat.c	2017-01-27 11:31:27.407974383 +0100
@@ -684,9 +695,10 @@ MATLAB_KO: ThrowReaderException(CorruptI
     }  
 
   /* ----- Load raster data ----- */
-    BImgBuff = MagickAllocateMemory(unsigned char *,(size_t) (ldblk));    /* Ldblk was set in the check phase */
+    BImgBuff = MagickAllocateMemory(unsigned char *,(size_t) (MagickArraySize(ldblk,sizeof(double))));    /* Ldblk was set in the check phase */
     if (BImgBuff == NULL)
       goto NoMemory;
+    (void) memset(BImgBuff,0,ldblk*sizeof(double));
 
     MinVal = 0;
     MaxVal = 0;
openSUSE Build Service is sponsored by
Places