forked from pool/aubio
Takashi Iwai
a3d4a60444
- Fix minor security issues leading to segfault or buffer overread (CVE-2018-14522, bsc#1102359, CVE-2018-14523, bsc#1102364): 0001-src-pitch-pitchyinfft.c-fix-out-of-bound-read-when-s.patch 0002-src-pitch-pitchyinfft.c-comment-out-debug-output.patch 0001-src-notes-notes.c-bail-out-if-pitch-creation-failed-.patch 0002-src-io-source_wavread.c-also-exit-if-samplerate-is-n.patch - Refresh the previous fixes from the upstream version aubio-wavread-input-validation.patch aubio-resampler-NULL-deref-fix.patch OBS-URL: https://build.opensuse.org/request/show/627873 OBS-URL: https://build.opensuse.org/package/show/multimedia:libs/aubio?expand=0&rev=25
29 lines
881 B
Diff
29 lines
881 B
Diff
From 99c7aa2e3efec988a5f81018b48d9388ff24bba1 Mon Sep 17 00:00:00 2001
|
|
From: Paul Brossier <piem@piem.org>
|
|
Date: Mon, 6 Aug 2018 14:04:48 +0200
|
|
Subject: [PATCH] src/io/source_wavread.c: also exit if samplerate is negative
|
|
(closes #188)
|
|
|
|
---
|
|
src/io/source_wavread.c | 4 ++--
|
|
1 file changed, 2 insertions(+), 2 deletions(-)
|
|
|
|
diff --git a/src/io/source_wavread.c b/src/io/source_wavread.c
|
|
index b91eb5cd0f07..90638af88eae 100644
|
|
--- a/src/io/source_wavread.c
|
|
+++ b/src/io/source_wavread.c
|
|
@@ -195,8 +195,8 @@ aubio_source_wavread_t * new_aubio_source_wavread(const char_t * path, uint_t sa
|
|
goto beach;
|
|
}
|
|
|
|
- if ( sr == 0 ) {
|
|
- AUBIO_ERR("source_wavread: Failed opening %s (samplerate can not be 0)\n", s->path);
|
|
+ if ( (sint_t)sr <= 0 ) {
|
|
+ AUBIO_ERR("source_wavread: Failed opening %s (samplerate can not be <= 0)\n", s->path);
|
|
goto beach;
|
|
}
|
|
|
|
--
|
|
2.18.0
|
|
|