SCT: Fix stack-buffer read overflow while reading file header.
--- a/ChangeLog Sat Sep 10 13:17:49 2016 -0500
+++ b/ChangeLog Sat Sep 10 15:21:05 2016 -0500
@@ -1,5 +1,9 @@
2016-09-10 Bob Friesenhahn <bfriesen@simple.dallas.tx.us>
+ * coders/sct.c (ReadSCTImage): Fix stack-buffer read overflow
+ while reading SCT header. Problem was reported via email by
+ Agostino Sarubbo on 2016-09-09.
+
* coders/svg.c: Fix Coverity issue 135772 "RESOURCE_LEAK" and
issue 135829 "Null pointer dereferences". None of these issues
were new, but Coverity noticed them now. Reflowed source to GNU C
--- a/coders/sct.c Sat Sep 10 13:17:49 2016 -0500
+++ b/coders/sct.c Sat Sep 10 15:21:05 2016 -0500
@@ -188,9 +188,11 @@
break;
if (ReadBlob(image,14,(char *) buffer) != 14)
break;
+ buffer[14]='\0';
image->rows=MagickAtoL(buffer) & 0x7FFFFFFF;
if (ReadBlob(image,14,(char *) buffer) != 14)
break;
+ buffer[14]='\0';
image->columns=MagickAtoL(buffer) & 0x7FFFFFFF;
if (ReadBlob(image,196,(char *) buffer) != 196)
break;
--- a/www/Changelog.html Sat Sep 10 13:17:49 2016 -0500
+++ b/www/Changelog.html Sat Sep 10 15:21:05 2016 -0500
@@ -38,6 +38,9 @@
<p>2016-09-10 Bob Friesenhahn <<a class="reference external" href="mailto:bfriesen%40simple.dallas.tx.us">bfriesen<span>@</span>simple<span>.</span>dallas<span>.</span>tx<span>.</span>us</a>></p>
<blockquote>
<ul class="simple">
+<li>coders/sct.c (ReadSCTImage): Fix stack-buffer read overflow
+while reading SCT header. Problem was reported via email by
+Agostino Sarubbo on 2016-09-09.</li>
<li>coders/svg.c: Fix Coverity issue 135772 "RESOURCE_LEAK" and
issue 135829 "Null pointer dereferences". None of these issues
were new, but Coverity noticed them now. Reflowed source to GNU C