projects / platform / upstream / libvorbis.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c784057) | patch
CVE-2017-14633: Don't allow for more than 256 channels
authorGuido Günther <agx@sigxcpu.org>
Tue, 31 Oct 2017 17:32:46 +0000 (18:32 +0100)
committerThomas Daede <daede003@umn.edu>
Mon, 11 Dec 2017 08:11:28 +0000 (00:11 -0800)
commita79ec216cd119069c68b8f3542c6a425a74ab993
tree137e2006159f61d78d90003f23d48fad46c8300dtree | snapshot
parentc78405727f8c5fcc9d1a8d23d57f16fc4c7dfacecommit | diff
CVE-2017-14633: Don't allow for more than 256 channels

Otherwise

 for(i=0;i<vi->channels;i++){
      /* the encoder setup assumes that all the modes used by any
         specific bitrate tweaking use the same floor */
      int submap=info->chmuxlist[i];

overreads later in mapping0_forward since chmuxlist is a fixed array of
256 elements max.
lib/info.c diff | blob | history
Domain: Multimedia / Media Playback;