projects
/
platform
/
core
/
multimedia
/
media-server.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
675422d
)
[SATIZENVUL-953] Add checker for block overflow
47/161347/2
submit/tizen/20171123.062739
author
Minje Ahn
<minje.ahn@samsung.com>
Thu, 23 Nov 2017 02:59:51 +0000
(11:59 +0900)
committer
Minje ahn
<minje.ahn@samsung.com>
Thu, 23 Nov 2017 03:16:58 +0000
(
03:16
+0000)
Change-Id: I034445bacf6254a0a15b32173e1604df803dc993
Signed-off-by: Minje Ahn <minje.ahn@samsung.com>
src/server/media-server-thumb.c
patch
|
blob
|
history
diff --git
a/src/server/media-server-thumb.c
b/src/server/media-server-thumb.c
index
f8e9e9a
..
1ad623b
100755
(executable)
--- a/
src/server/media-server-thumb.c
+++ b/
src/server/media-server-thumb.c
@@
-224,7
+224,7
@@
int _ms_thumb_set_buffer(thumbMsg *req_msg, unsigned char **buf, int *buf_size)
org_path_len = req_msg->origin_path_size;
dst_path_len = req_msg->dest_path_size;
data_len = req_msg->thumb_size;
- if (
org_path_len < 0 || dst_path_len < 0
|| data_len < 0) {
+ if (
(org_path_len < 0 || org_path_len > MAX_FILEPATH_LEN) || (dst_path_len < 0 || dst_path_len > MAX_FILEPATH_LEN)
|| data_len < 0) {
MS_DBG_ERR("msg size is wrong");
return -1;
}