Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Leap:15.1:Staging:B
wavpack
CVE-2018-19841.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2018-19841.patch of Package wavpack
From bba5389dc598a92bdf2b297c3ea34620b6679b5b Mon Sep 17 00:00:00 2001 From: David Bryant <david@wavpack.com> Date: Thu, 29 Nov 2018 21:53:51 -0800 Subject: [PATCH] issue #54: fix potential out-of-bounds heap read --- src/open_utils.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/open_utils.c b/src/open_utils.c index 80051fc..4fe0d67 100644 --- a/src/open_utils.c +++ b/src/open_utils.c @@ -1258,13 +1258,13 @@ int WavpackVerifySingleBlock (unsigned char *buffer, int verify_checksum) #endif if (meta_bc == 4) { - if (*dp++ != (csum & 0xff) || *dp++ != ((csum >> 8) & 0xff) || *dp++ != ((csum >> 16) & 0xff) || *dp++ != ((csum >> 24) & 0xff)) + if (*dp != (csum & 0xff) || dp[1] != ((csum >> 8) & 0xff) || dp[2] != ((csum >> 16) & 0xff) || dp[3] != ((csum >> 24) & 0xff)) return FALSE; } else { csum ^= csum >> 16; - if (*dp++ != (csum & 0xff) || *dp++ != ((csum >> 8) & 0xff)) + if (*dp != (csum & 0xff) || dp[1] != ((csum >> 8) & 0xff)) return FALSE; } -- 2.20.1
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor