From: Sejun Park <sejun79.park@samsung.com>
Date: Thu, 1 Jun 2017 06:09:02 +0000 (+0900)
Subject: apply cve patch for security weakness
X-Git-Tag: submit/tizen/20171212.053432~1
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=f395474c6b99081a6edf2d572c20081a00032e95;p=platform%2Fupstream%2Fgst-plugins-ugly.git

apply cve patch for security weakness

Change-Id: I9725fb3300eaee3b047e236297db57517de02031
---

diff --git a/gst/asfdemux/gstasfdemux.c b/gst/asfdemux/gstasfdemux.c
index 4bf0619b..2db00d21 100644
--- a/gst/asfdemux/gstasfdemux.c
+++ b/gst/asfdemux/gstasfdemux.c
@@ -3203,7 +3203,12 @@ gst_asf_demux_process_ext_content_desc (GstASFDemux * demux, guint8 * data,
           break;
         }
         case ASF_DEMUX_DATA_TYPE_DWORD:{
-          guint uint_val = GST_READ_UINT32_LE (value);
+          guint uint_val;
+
+          if (value_len < 4)
+            break;
+
+          uint_val = GST_READ_UINT32_LE (value);
 
           /* this is the track number */
           g_value_init (&tag_value, G_TYPE_UINT);
@@ -3217,7 +3222,12 @@ gst_asf_demux_process_ext_content_desc (GstASFDemux * demux, guint8 * data,
         }
           /* Detect 3D */
         case ASF_DEMUX_DATA_TYPE_BOOL:{
-          gboolean bool_val = GST_READ_UINT32_LE (value);
+          gboolean bool_val;
+
+          if (value_len < 4)
+            break;
+
+          bool_val = GST_READ_UINT32_LE (value);
 
           if (strncmp ("Stereoscopic", name_utf8, strlen (name_utf8)) == 0) {
             if (bool_val) {