Menu
▾
▴
[Ming-cvs] [libming/libming] 603255: Fix global buffer overflow in printMP3Headers.
|
From: GitHub <no...@gi...> - 2018-01-10 12:19:54
|
Branch: refs/heads/master Home: https://github.com/libming/libming Commit: 6032557a21e4dac8bb2606bb5b58e27d85a7ff98 https://github.com/libming/libming/commit/6032557a21e4dac8bb2606bb5b58e27d85a7ff98 Author: Hugo Lefeuvre <hl...@de...> Date: 2018-01-10 (Wed, 10 Jan 2018) Changed paths: M NEWS M util/listmp3.c Log Message: ----------- Fix global buffer overflow in printMP3Headers. The printMP3Headers function in util/listmp3.c processes mp3 files without checking their bitrate values. This leads to bitrate_idx = 15 being used as index in mp2l23_bitrate_table[bitrate_idx] while mp2l23_bitrate_table has only 14 elements. In this commit we add a check rejecting mp3 files declaring invalid bitrates. This commit fixes CVE-2017-16898 (fixes: #75). Commit: 1df8bc2e6e286e1226204c01779c4020aa97725f https://github.com/libming/libming/commit/1df8bc2e6e286e1226204c01779c4020aa97725f Author: Sandro Santilli <st...@kb...> Date: 2018-01-10 (Wed, 10 Jan 2018) Changed paths: M NEWS M util/listmp3.c Log Message: ----------- Merge pull request #99 from hlef/master Fix global buffer overflow in printMP3Headers (CVE-2017-16898) Compare: https://github.com/libming/libming/compare/ded97d037322...1df8bc2e6e28 |
