File ImageMagick-CVE-2020-27752.patch of Package ImageMagick.25562

Overview Repositories Revisions Requests Users Attributes Meta

File ImageMagick-CVE-2020-27752.patch of Package ImageMagick.25562

Index: ImageMagick-7.0.7-34/coders/png.c
===================================================================
--- ImageMagick-7.0.7-34.orig/coders/png.c	2020-12-08 17:41:44.440481747 +0100
+++ ImageMagick-7.0.7-34/coders/png.c	2020-12-08 17:41:44.452481828 +0100
@@ -11361,11 +11361,13 @@ static MagickBooleanType WriteOnePNGImag
       (void) LogMagickEvent(CoderEvent,GetMagickModule(),
         "    Allocating %.20g bytes of memory for pixels",(double) rowbytes);
     }
-  pixel_info=AcquireVirtualMemory(rowbytes+256,sizeof(*ping_pixels));
+  pixel_info=AcquireVirtualMemory(rowbytes,GetPixelChannels(image)*
+    sizeof(*ping_pixels));
   if (pixel_info == (MemoryInfo *) NULL)
     png_error(ping,"Allocation of memory for pixels failed");
   ping_pixels=(unsigned char *) GetVirtualMemoryBlob(pixel_info);
-  (void) memset(ping_pixels,0,(rowbytes+256)*sizeof(*ping_pixels));
+  (void) memset(ping_pixels,0,rowbytes*GetPixelChannels(image)*
+    sizeof(*ping_pixels));
   /*
     Initialize image scanlines.
   */

Places

File ImageMagick-CVE-2020-27752.patch of Package ImageMagick.25562

Places