From: Cristy <urban-warrior@imagemagick.org>
Date: Fri, 10 Nov 2017 15:16:14 +0000 (-0500)
Subject: Fixed stack-based buffer overflow (private e-mail from Mitsunari)
X-Git-Tag: 7.0.7-11~4
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=56c5a25c74872baef51549bc8f1ef4a68e5b7274;p=imagemagick

Fixed stack-based buffer overflow (private e-mail from Mitsunari)
---

diff --git a/coders/txt.c b/coders/txt.c
index 7da066b7a..3f5087d71 100644
--- a/coders/txt.c
+++ b/coders/txt.c
@@ -440,7 +440,7 @@ static Image *ReadTXTImage(const ImageInfo *image_info,ExceptionInfo *exception)
     height=0;
     max_value=0;
     *colorspace='\0';
-    count=(ssize_t) sscanf(text+32,"%lu,%lu,%lu,%s",&width,&height,&max_value,
+    count=(ssize_t) sscanf(text+32,"%lu,%lu,%lu,%32s",&width,&height,&max_value,
       colorspace);
     if ((count != 4) || (width == 0) || (height == 0) || (max_value == 0))
       ThrowReaderException(CorruptImageError,"ImproperImageHeader");