From: Cristy <urban-warrior@imagemagick.org>
Date: Sat, 26 Mar 2022 09:27:36 -0400
Subject: CVE-2022-28463: buffer overflow in cin coder

bug-debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1013282
bug: https://github.com/ImageMagick/ImageMagick/issues/4988
origin: https://github.com/ImageMagick/ImageMagick6/commit/e6ea5876e0228165ee3abc6e959aa174cee06680.patch
(cherry picked from commit e6ea5876e0228165ee3abc6e959aa174cee06680)
---
 coders/cin.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/coders/cin.c b/coders/cin.c
index 2f814e..67c56 100644
--- a/coders/cin.c
+++ b/coders/cin.c
@@ -450,6 +450,8 @@ static Image *ReadCINImage(const ImageInfo *image_info,ExceptionInfo *exception)
   image->endian=(magick[0] == 0x80) && (magick[1] == 0x2a) &&
     (magick[2] == 0x5f) && (magick[3] == 0xd7) ? MSBEndian : LSBEndian;
   cin.file.image_offset=ReadBlobLong(image);
+  if (cin.file.image_offset < 712)
+    ThrowReaderException(CorruptImageError,"ImproperImageHeader");
   offset+=4;
   cin.file.generic_length=ReadBlobLong(image);
   offset+=4;