We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 817f6ab commit ecb31dbCopy full SHA for ecb31db
coders/bmp.c
@@ -661,6 +661,8 @@ static Image *ReadBMPImage(const ImageInfo *image_info,ExceptionInfo *exception)
661
bmp_info.x_pixels=ReadBlobLSBLong(image);
662
bmp_info.y_pixels=ReadBlobLSBLong(image);
663
bmp_info.number_colors=ReadBlobLSBLong(image);
664
+ if (bmp_info.number_colors > GetBlobSize(image))
665
+ ThrowReaderException(CorruptImageError,"InsufficientImageDataInFile");
666
bmp_info.colors_important=ReadBlobLSBLong(image);
667
if (image->debug != MagickFalse)
668
{
0 commit comments