From 7045d324eeaa788e9071a32e554be90b5b01d708fee3fe5da2616175de53e8f2 Mon Sep 17 00:00:00 2001
From: Petr Gajdos <pgajdos@suse.com>
Date: Wed, 11 Apr 2018 11:27:36 +0000
Subject: [PATCH] - security update (webp.c)   * CVE-2018-9135 [bsc#1087825]   
  + ImageMagick-CVE-2018-9135.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/ImageMagick?expand=0&rev=356
---
 ImageMagick-CVE-2018-9135.patch | 12 ++++++++++++
 ImageMagick.changes             |  7 +++++++
 ImageMagick.spec                |  2 ++
 3 files changed, 21 insertions(+)
 create mode 100644 ImageMagick-CVE-2018-9135.patch

diff --git a/ImageMagick-CVE-2018-9135.patch b/ImageMagick-CVE-2018-9135.patch
new file mode 100644
index 0000000..79fa29c
--- /dev/null
+++ b/ImageMagick-CVE-2018-9135.patch
@@ -0,0 +1,12 @@
+--- a/coders/webp.c
++++ b/coders/webp.c
+@@ -181,6 +181,8 @@ static MagickBooleanType IsWEBPImageLossless(const unsigned char *stream,
+   /*
+     Read simple header.
+   */
++  if (length <= VP8_CHUNK_INDEX)
++    return(MagickFalse);
+   if (stream[VP8_CHUNK_INDEX] != EXTENDED_HEADER)
+     return(stream[VP8_CHUNK_INDEX] == LOSSLESS_FLAG ? MagickTrue : MagickFalse);
+   /*
+
diff --git a/ImageMagick.changes b/ImageMagick.changes
index a49dfde..8de0086 100644
--- a/ImageMagick.changes
+++ b/ImageMagick.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Wed Apr 11 11:26:19 UTC 2018 - pgajdos@suse.com
+
+- security update (webp.c)
+  * CVE-2018-9135 [bsc#1087825]
+    + ImageMagick-CVE-2018-9135.patch
+
 -------------------------------------------------------------------
 Tue Apr 10 08:36:17 UTC 2018 - pgajdos@suse.com
 
diff --git a/ImageMagick.spec b/ImageMagick.spec
index b0c70bb..1e8cab3 100644
--- a/ImageMagick.spec
+++ b/ImageMagick.spec
@@ -57,6 +57,7 @@ Patch4:         ImageMagick-write.t-pict.patch
 #%%ifarch i586
 Patch5:         ImageMagick-tests.tap-attributes.patch
 #%%endif
+Patch6:         ImageMagick-CVE-2018-9135.patch
 BuildRequires:  chrpath
 BuildRequires:  dos2unix
 BuildRequires:  fdupes
@@ -313,6 +314,7 @@ HTML documentation for ImageMagick library and scene examples.
 %ifarch i586
 %patch5 -p1
 %endif
+%patch6 -p1
 
 %build
 # bsc#1088463