From 1b81f6e58e0827c1990ed1d7cf2933508c9143c1 Mon Sep 17 00:00:00 2001
From: Cristy <urban-warrior@imagemagick.org>
Date: Wed, 14 Feb 2018 07:13:24 -0500
Subject: [PATCH] https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6307

---
 coders/miff.c | 2 ++
 coders/mpc.c  | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/coders/miff.c b/coders/miff.c
index 37b63eece..329e96a97 100644
--- a/coders/miff.c
+++ b/coders/miff.c
@@ -1147,6 +1147,8 @@ static Image *ReadMIFFImage(const ImageInfo *image_info,
         while (name != (const char *) NULL)
         {
           length=ReadBlobMSBLong(image);
+          if ((MagickSizeType) length > GetBlobSize(image))
+            break;
           profile=AcquireStringInfo(length);
           if (profile == (StringInfo *) NULL)
             break;
diff --git a/coders/mpc.c b/coders/mpc.c
index d1777525e..b5449989c 100644
--- a/coders/mpc.c
+++ b/coders/mpc.c
@@ -844,6 +844,8 @@ static Image *ReadMPCImage(const ImageInfo *image_info,ExceptionInfo *exception)
         while (name != (const char *) NULL)
         {
           length=ReadBlobMSBLong(image);
+          if ((MagickSizeType) length > GetBlobSize(image))
+            break;
           profile=AcquireStringInfo(length);
           if (profile == (StringInfo *) NULL)
             break;
-- 
2.40.0