Overview

File ImageMagick-CVE-2026-25897.patch of Package ImageMagick.42998

From 23fde73188ea32c15b607571775d4f92bdb75e60 Mon Sep 17 00:00:00 2001
From: Dirk Lemstra <dirk@lemstra.org>
Date: Fri, 6 Feb 2026 22:21:19 +0100
Subject: [PATCH] Added extra check to prevent out of bounds heap write on
 32-bit systems (GHSA-6j5f-24fw-pqp4)

---
 coders/sun.c | 5 +++++
 1 file changed, 5 insertions(+)

Index: ImageMagick-7.1.0-9/coders/sun.c
===================================================================
--- ImageMagick-7.1.0-9.orig/coders/sun.c
+++ ImageMagick-7.1.0-9/coders/sun.c
@@ -469,6 +469,11 @@ static Image *ReadSUNImage(const ImageIn
         sun_data=(unsigned char *) RelinquishMagickMemory(sun_data);
         ThrowReaderException(ResourceLimitError,"ImproperImageHeader");
       }
+    if (image->rows > (MAGICK_SIZE_MAX - pixels_length))
+      {
+        sun_data=(unsigned char *) RelinquishMagickMemory(sun_data);
+        ThrowReaderException(ResourceLimitError,"ImproperImageHeader");
+      }
     sun_pixels=(unsigned char *) AcquireQuantumMemory(pixels_length+image->rows,
       sizeof(*sun_pixels));
     if (sun_pixels == (unsigned char *) NULL)
openSUSE Build Service is sponsored by
Places