Blame - poky/meta/recipes-multimedia/libsndfile/libsndfile1/CVE-2018-13139.patch - openbmc/openbmc

blob: 4ae3674df1593c09c3ec8268f7b818660941792f [file] [log] [blame]

Brad Bishop	004d499	2018-10-02 23:54:45 +0200	[diff] [blame^]	1	From 5473aeef7875e54bd0f786fbdd259a35aaee875c Mon Sep 17 00:00:00 2001
				2	From: Changqing Li <changqing.li@windriver.com>
				3	Date: Wed, 10 Oct 2018 08:59:30 +0800
				4	Subject: [PATCH] libsndfile1: patch for CVE-2018-13139
				5
				6	Upstream-Status: Backport [https://github.com/bwarden/libsndfile/
				7	commit/df18323c622b54221ee7ace74b177cdcccc152d7]
				8
				9	CVE: CVE-2018-13139
				10
				11	Signed-off-by: Changqing Li <changqing.li@windriver.com>
				12	---
				13	programs/sndfile-deinterleave.c \| 6 ++++++
				14	1 file changed, 6 insertions(+)
				15
				16	diff --git a/programs/sndfile-deinterleave.c b/programs/sndfile-deinterleave.c
				17	index e27593e..721bee7 100644
				18	--- a/programs/sndfile-deinterleave.c
				19	+++ b/programs/sndfile-deinterleave.c
				20	@@ -89,6 +89,12 @@ main (int argc, char **argv)
				21	exit (1) ;
				22	} ;
				23
				24	+ if (sfinfo.channels > MAX_CHANNELS)
				25	+ { printf ("\nError : Input file '%s' has too many (%d) channels. Limit is %d.\n",
				26	+ argv [1], sfinfo.channels, MAX_CHANNELS) ;
				27	+ exit (1) ;
				28	+ } ;
				29	+
				30	state.channels = sfinfo.channels ;
				31	sfinfo.channels = 1 ;
				32
				33	--
				34	2.7.4
				35