packages/sox
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
sox/CVE-2021-40426.patch

36 lines
1.1 KiB
Diff
Raw Normal View History

Fix CVE-2021-33844,CVE-2023-32627,CVE-2021-23159,CVE-2023-34432 CVE-2023-34318,CVE-2021-23172,CVE-2021-3643,CVE-2021-23210 CVE-2022-31650,CVE-2023-26590,CVE-2022-31651,CVE-2023-32627 CVE-2017-18189
2023-12-07 11:19:22 +08:00
From: Helmut Grohne <helmut@subdivi.de>
Date: Sat, 11 Nov 2023 18:18:40 +0100
Subject: sphere: avoid integer underflow
Link: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1434
Bug: https://sourceforge.net/p/sox/bugs/362/
Bug-Debian: https://bugs.debian.org/1012138
---
src/sphere.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/src/sphere.c b/src/sphere.c
index a3fd1c6..9544d16 100644
--- a/src/sphere.c
+++ b/src/sphere.c
@@ -63,7 +63,8 @@ static int start_read(sox_format_t * ft)
return (SOX_EOF);
}
- header_size -= (strlen(buf) + 1);
+ bytes_read = strlen(buf);
+ header_size -= bytes_read >= header_size ? header_size : bytes_read + 1;
while (strncmp(buf, "end_head", (size_t)8) != 0) {
if (strncmp(buf, "sample_n_bytes", (size_t)14) == 0)
@@ -105,7 +106,8 @@ static int start_read(sox_format_t * ft)
return (SOX_EOF);
}
- header_size -= (strlen(buf) + 1);
+ bytes_read = strlen(buf);
+ header_size -= bytes_read >= header_size ? header_size : bytes_read + 1;
}
if (!bytes_per_sample)
Reference in New Issue Copy Permalink