summaryrefslogtreecommitdiff
path: root/multimedia/xine-lib/patches
diff options
context:
space:
mode:
authortron <tron@pkgsrc.org>2005-01-06 12:04:08 +0000
committertron <tron@pkgsrc.org>2005-01-06 12:04:08 +0000
commit1fc68b901cf6804f0ebc112bc13450971a693542 (patch)
treea883be9db2e846e2a861c87cb7cacabb25066d8a /multimedia/xine-lib/patches
parente2cebb2b6983dbb98052df69bd7d96af4ce93a68 (diff)
downloadpkgsrc-1fc68b901cf6804f0ebc112bc13450971a693542.tar.gz
Fix buffer overflow reported in CAN-2004-1300, bump package revision.
Diffstat (limited to 'multimedia/xine-lib/patches')
-rw-r--r--multimedia/xine-lib/patches/patch-aj14
1 files changed, 14 insertions, 0 deletions
diff --git a/multimedia/xine-lib/patches/patch-aj b/multimedia/xine-lib/patches/patch-aj
new file mode 100644
index 00000000000..db322b5b108
--- /dev/null
+++ b/multimedia/xine-lib/patches/patch-aj
@@ -0,0 +1,14 @@
+$NetBSD: patch-aj,v 1.3 2005/01/06 12:04:08 tron Exp $
+
+--- src/demuxers/demux_aiff.c.orig 2004-06-13 22:28:52.000000000 +0100
++++ src/demuxers/demux_aiff.c 2005-01-06 11:38:44.000000000 +0000
+@@ -122,7 +122,8 @@
+ chunk_size = BE_32(&preamble[4]);
+
+ if (chunk_type == COMM_TAG) {
+- if (this->input->read(this->input, buffer, chunk_size) !=
++ if (chunk_size > sizeof (buffer) ||
++ this->input->read(this->input, buffer, chunk_size) !=
+ chunk_size) {
+ this->status = DEMUX_FINISHED;
+ return 0;