diff --git a/0001-Added-an-extra-check-to-MLU-bounds.patch b/0001-Added-an-extra-check-to-MLU-bounds.patch
new file mode 100644
index 0000000..10c777a
--- /dev/null
+++ b/0001-Added-an-extra-check-to-MLU-bounds.patch
@@ -0,0 +1,25 @@
+From 5ca71a7bc18b6897ab21d815d15e218e204581e2 Mon Sep 17 00:00:00 2001
+From: Marti <marti.maria@tktbrainpower.com>
+Date: Mon, 15 Aug 2016 23:31:39 +0200
+Subject: [PATCH] Added an extra check to MLU bounds
+
+Thanks to Ibrahim el-sayed for spotting the bug
+---
+ src/cmstypes.c | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/src/cmstypes.c b/src/cmstypes.c
+index cb61860..c7328b9 100644
+--- a/src/cmstypes.c
++++ b/src/cmstypes.c
+@@ -1460,6 +1460,7 @@ void *Type_MLU_Read(struct _cms_typehandler_struct* self, cmsIOHANDLER* io, cmsU
+ 
+         // Check for overflow
+         if (Offset < (SizeOfHeader + 8)) goto Error;
++        if ((Offset + Len) > SizeOfTag + 8) goto Error;
+ 
+         // True begin of the string
+         BeginOfThisString = Offset - SizeOfHeader - 8;
+-- 
+2.7.4
+
diff --git a/lcms2.changes b/lcms2.changes
index 66a9c5f..89d0079 100644
--- a/lcms2.changes
+++ b/lcms2.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Tue Jan 24 00:47:25 UTC 2017 - plinnell@opensuse.org
+
+- Added 0001-Added-an-extra-check-to-MLU-bounds.patch 
+  * fixes https://bugzilla.suse.com/show_bug.cgi?id=1021364
+
 -------------------------------------------------------------------
 Tue Aug 16 06:09:50 UTC 2016 - plinnell@opensuse.org
 - Update to 2.8
diff --git a/lcms2.spec b/lcms2.spec
index 2dd1553..0e26681 100644
--- a/lcms2.spec
+++ b/lcms2.spec
@@ -55,6 +55,7 @@ Source0:        http://sourceforge.net/projects/lcms/files/lcms/%{version}/%{nam
 Source1:        baselibs.conf
 Patch1:         lcms2-ocloexec.patch
 Patch2:         lcms2-visibility.patch
+Patch3:			0001-Added-an-extra-check-to-MLU-bounds.patch
 
 %description
 Littlecms is a small speed optimized color management engine.
@@ -96,6 +97,7 @@ This package contains user and developer documentation for lcms2.
 %setup -q
 %patch1
 %patch2
+%patch3 -p1
 chmod a-x doc/* COPYING AUTHORS
 
 %build