sync/ports
1
0
Fork 0
mirror of https://git.freebsd.org/ports.git synced 2025-06-07 13:50:38 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
ports/audio/libmad/files/patch-layer3.c
Sunpoet Po-Chuan Hsieh f3a0cc6e09 Fix CVE-2017-8372, CVE-2017-8373 and CVE-2017-8374 
- Bump PORTREVISION for package change

Differential Revision:	https://reviews.freebsd.org/D22300
Submitted by:	Daniel Engberg <daniel.engberg.lists@pyret.net>
Obtained from:	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508133#15
Security:	b48e7b14-052a-11ea-a1de-53b029d2b061
MFH:		2019Q4
2019-11-13 23:24:54 +00:00

17 lines
440 B
C
Raw Blame History

Obtained from: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508133#15
--- layer3.c.orig 2004-01-23 09:41:32 UTC
+++ layer3.c
@@ -2608,6 +2608,12 @@ int mad_layer_III(struct mad_stream *str
next_md_begin = 0;
md_len = si.main_data_begin + frame_space - next_md_begin;
+ if (md_len + MAD_BUFFER_GUARD > MAD_BUFFER_MDLEN)
+ {
+ stream->error = MAD_ERROR_LOSTSYNC;
+ stream->sync = 0;
+ return -1;
+ }
frame_used = 0;
Reference in a new issue View git blame Copy permalink