From: cristy <urban-warrior@git.imagemagick.org>
Date: Tue, 3 Apr 2012 12:58:43 +0000 (+0000)
Subject: (no commit message)
X-Git-Tag: 7.0.1-0~5910
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=4d14d5934ea878baefc9c0f63386515e4aae9aa4;p=imagemagick

---

diff --git a/MagickCore/profile.c b/MagickCore/profile.c
index 901ce2c45..3a3444dad 100644
--- a/MagickCore/profile.c
+++ b/MagickCore/profile.c
@@ -6696,8 +6696,10 @@ MagickPrivate MagickBooleanType SyncImageProfiles(Image *image)
       format=(ssize_t) ReadProfileShort(endian,q+2);
       if ((format-1) >= EXIF_NUM_FORMATS)
         break;
-      components=(int) ReadProfileLong(endian,q+4);
+      components=(ssize_t) ((int) ReadProfileLong(endian,q+4));
       number_bytes=(size_t) components*format_bytes[format];
+      if (number_bytes < components)
+        break;  /* prevent overflow */
       if (number_bytes <= 4)
         p=q+8;
       else