Overview

File GraphicsMagick-CVE-2016-9556.patch of Package GraphicsMagick.7727

From ce98a7acbcfca7f0a178f4b1e7b957e419e0cc99 Mon Sep 17 00:00:00 2001
From: Cristy <urban-warrior@imagemagick.org>
Date: Wed, 16 Nov 2016 15:50:12 -0500
Subject: [PATCH] https://github.com/ImageMagick/ImageMagick/issues/301

---
 coders/sgi.c | 2 ++
 1 file changed, 2 insertions(+)

Index: GraphicsMagick-1.3.20/coders/sgi.c
===================================================================
--- GraphicsMagick-1.3.20.orig/coders/sgi.c	2016-11-28 12:00:12.518117989 +0100
+++ GraphicsMagick-1.3.20/coders/sgi.c	2016-11-28 12:00:32.634451825 +0100
@@ -315,6 +315,8 @@ static Image *ReadSGIImage(const ImageIn
       iris_info.storage=ReadBlobByte(image);
       iris_info.bytes_per_pixel=ReadBlobByte(image);
       iris_info.dimension=ReadBlobMSBShort(image);
+    if ((iris_info.dimension == 0) || (iris_info.dimension > 3)) 
+      ThrowReaderException(CorruptImageError,ImproperImageHeader,image);
       iris_info.xsize=ReadBlobMSBShort(image);
       iris_info.ysize=ReadBlobMSBShort(image);
       iris_info.zsize=ReadBlobMSBShort(image);
openSUSE Build Service is sponsored by
Places