Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Step:15-SP1
libsndfile-progs.31264
0010-src-aiff.c-Fix-a-buffer-read-overflow.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File 0010-src-aiff.c-Fix-a-buffer-read-overflow.patch of Package libsndfile-progs.31264
From f833c53cb596e9e1792949f762e0b33661822748 Mon Sep 17 00:00:00 2001 From: Erik de Castro Lopo <erikd@mega-nerd.com> Date: Tue, 23 May 2017 20:15:24 +1000 Subject: [PATCH] src/aiff.c: Fix a buffer read overflow Secunia Advisory SA76717. Found by: Laurent Delosieres, Secunia Research at Flexera Software --- src/aiff.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) --- a/src/aiff.c +++ b/src/aiff.c @@ -1905,7 +1905,7 @@ aiff_read_chanmap (SF_PRIVATE * psf, uns psf_binheader_readf (psf, "j", dword - bytesread) ; if (map_info->channel_map != NULL) - { size_t chanmap_size = psf->sf.channels * sizeof (psf->channel_map [0]) ; + { size_t chanmap_size = SF_MIN (psf->sf.channels, layout_tag & 0xffff) * sizeof (psf->channel_map [0]) ; free (psf->channel_map) ;
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor