diff options
author | tron <tron@pkgsrc.org> | 2005-01-06 12:04:08 +0000 |
---|---|---|
committer | tron <tron@pkgsrc.org> | 2005-01-06 12:04:08 +0000 |
commit | 1fc68b901cf6804f0ebc112bc13450971a693542 (patch) | |
tree | a883be9db2e846e2a861c87cb7cacabb25066d8a /multimedia/xine-lib/patches | |
parent | e2cebb2b6983dbb98052df69bd7d96af4ce93a68 (diff) | |
download | pkgsrc-1fc68b901cf6804f0ebc112bc13450971a693542.tar.gz |
Fix buffer overflow reported in CAN-2004-1300, bump package revision.
Diffstat (limited to 'multimedia/xine-lib/patches')
-rw-r--r-- | multimedia/xine-lib/patches/patch-aj | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/multimedia/xine-lib/patches/patch-aj b/multimedia/xine-lib/patches/patch-aj new file mode 100644 index 00000000000..db322b5b108 --- /dev/null +++ b/multimedia/xine-lib/patches/patch-aj @@ -0,0 +1,14 @@ +$NetBSD: patch-aj,v 1.3 2005/01/06 12:04:08 tron Exp $ + +--- src/demuxers/demux_aiff.c.orig 2004-06-13 22:28:52.000000000 +0100 ++++ src/demuxers/demux_aiff.c 2005-01-06 11:38:44.000000000 +0000 +@@ -122,7 +122,8 @@ + chunk_size = BE_32(&preamble[4]); + + if (chunk_type == COMM_TAG) { +- if (this->input->read(this->input, buffer, chunk_size) != ++ if (chunk_size > sizeof (buffer) || ++ this->input->read(this->input, buffer, chunk_size) != + chunk_size) { + this->status = DEMUX_FINISHED; + return 0; |