Red Hat Bugzilla – Bug 130806
CAN-2004-0827 heap overflow in BMP decoder
Last modified: 2007-11-30 17:10:47 EST
A heap overflow has been discovered in the ImageMagick BMP decoder.
The demo BMP file is the same one which affected QT.
The demo image is attachment 102533 [details].
This issue also affects FC1.
Created attachment 103039 [details]
This will add the checks needed to prevent this overflow.
You may wish to have a look at
because the patch in comment #1 may not have caught all of
Please see attachment 106788 [details] for a more comprehensive patch than
103039. This attachment also covers DIB and AVI buffer overflows
as well as BMP. Parallel entry in #7 of Bugzilla issue 130807,
This should be fixed in 6.0.7, according to comments in #130807.
FC2 has 22.214.171.124 now --> resolving