aboutsummaryrefslogtreecommitdiffstats
path: root/main/libsndfile/CVE-2018-19758.patch
diff options
context:
space:
mode:
authoralpine-mips-patches <info@mobile-stream.com>2019-01-03 12:42:34 +0000
committerLeonardo Arena <rnalrd@alpinelinux.org>2019-01-04 10:08:46 +0000
commit64a969f0cd8a0df31772a84d6b0d9f264c4a337e (patch)
treefb544801a3692a61667aa5567c59d5828ef859f4 /main/libsndfile/CVE-2018-19758.patch
parent7d4be814f2c115cb88832ceb3be66cfd5cbc5134 (diff)
downloadaports-64a969f0cd8a0df31772a84d6b0d9f264c4a337e.tar.bz2
aports-64a969f0cd8a0df31772a84d6b0d9f264c4a337e.tar.xz
main/libsndfile: pull CVE-2018-19758 fix from upstream
Diffstat (limited to 'main/libsndfile/CVE-2018-19758.patch')
-rw-r--r--main/libsndfile/CVE-2018-19758.patch23
1 files changed, 23 insertions, 0 deletions
diff --git a/main/libsndfile/CVE-2018-19758.patch b/main/libsndfile/CVE-2018-19758.patch
new file mode 100644
index 0000000000..ead28f6fd2
--- /dev/null
+++ b/main/libsndfile/CVE-2018-19758.patch
@@ -0,0 +1,23 @@
+commit 42132c543358cee9f7c3e9e9b15bb6c1063a608e
+Author: Erik de Castro Lopo <erikd@mega-nerd.com>
+Date: Tue Jan 1 20:11:46 2019 +1100
+
+ src/wav.c: Fix heap read overflow
+
+ This is CVE-2018-19758.
+
+ Closes: https://github.com/erikd/libsndfile/issues/435
+
+diff --git a/src/wav.c b/src/wav.c
+index 9d71aadb..5c825f2a 100644
+--- a/src/wav.c
++++ b/src/wav.c
+@@ -1146,6 +1146,8 @@ wav_write_header (SF_PRIVATE *psf, int calc_length)
+ psf_binheader_writef (psf, "44", BHW4 (0), BHW4 (0)) ; /* SMTPE format */
+ psf_binheader_writef (psf, "44", BHW4 (psf->instrument->loop_count), BHW4 (0)) ;
+
++ /* Loop count is signed 16 bit number so we limit it range to something sensible. */
++ psf->instrument->loop_count &= 0x7fff ;
+ for (tmp = 0 ; tmp < psf->instrument->loop_count ; tmp++)
+ { int type ;
+