]> git.sesse.net Git - vlc/commit
projects / vlc / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3a71b31) | patch
misc: update: fix buffer overflow in updater
authorFabian Yamaguchi <fyamagu@gwdg.de>
Sat, 6 Dec 2014 12:12:38 +0000 (13:12 +0100)
committerJean-Baptiste Kempf <jb@videolan.org>
Wed, 10 Dec 2014 18:48:06 +0000 (19:48 +0100)
commitfbe2837bc80f155c001781041a54c58b5524fc14
treefdb0cad8aa5911bc99094ed11a657b4afe68505ctree | snapshot
parent3a71b317f58e3ef627b65ae16d1c3403aaf171f4commit | diff
misc: update: fix buffer overflow in updater

On 32 bit builds, parsing of update status files with a size of
4294967295 or more lead to an integer truncation in a call to malloc
and a subsequent buffer overflow. This happened prior to checking the
files' signature. The commit fixes this by disallowing overly large
status files (above 65k in practice)

Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
src/misc/update.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.