Overview

File GraphicsMagick-CVE-2017-15017.patch of Package GraphicsMagick.7893

Index: GraphicsMagick-1.2.5/coders/png.c
===================================================================
--- GraphicsMagick-1.2.5.orig/coders/png.c	2018-02-26 14:05:36.259629714 +0100
+++ GraphicsMagick-1.2.5/coders/png.c	2018-02-26 14:07:39.301647980 +0100
@@ -4457,6 +4457,9 @@ static Image *ReadMNGImage(const ImageIn
                   if (mng_info->global_plte == (png_colorp) NULL)
                     mng_info->global_plte=
                       MagickAllocateMemory(png_colorp,256*sizeof(png_color));
+                  if (mng_info->global_plte == (png_colorp) NULL)
+                    ThrowReaderException(ResourceLimitError,
+                                         MemoryAllocationFailed,image);
                   for (i=0; i < (long) (length/3); i++)
                     {
                       mng_info->global_plte[i].red=p[3*i];
openSUSE Build Service is sponsored by
Places