From e24e701f3a81b48594207eb5dd8e64ae3bcab2b8 Mon Sep 17 00:00:00 2001
From: Kevin Newton <kddnewton@gmail.com>
Date: Sat, 29 Nov 2025 14:31:34 -0500
Subject: [PATCH] Fix out-of-bounds read in parser_lex_magic_comment

Co-authored-by: Steven Johnstone <steven.james.johnstone@gmail.com>
---
 src/prism.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/prism.c b/src/prism.c
index 186cdd354c..3d6cd3e2cb 100644
--- a/src/prism.c
+++ b/src/prism.c
@@ -8443,7 +8443,7 @@ parser_lex_magic_comment(pm_parser_t *parser, bool semantic_token_seen) {
                 if (*cursor == '\\' && (cursor + 1 < end)) cursor++;
             }
             value_end = cursor;
-            if (*cursor == '"') cursor++;
+            if (cursor < end && *cursor == '"') cursor++;
         } else {
             value_start = cursor;
             while (cursor < end && *cursor != '"' && *cursor != ';' && !pm_char_is_whitespace(*cursor)) cursor++;