CVE-2017-14633: Don't allow for more than 256 channels (a79ec216) · Commits · Xiph.Org / Vorbis · GitLab

Commit a79ec216 authored Oct 31, 2017 by Guido Günther Committed by Thomas Daede Dec 11, 2017

CVE-2017-14633: Don't allow for more than 256 channels

Otherwise

 for(i=0;i<vi->channels;i++){
      /* the encoder setup assumes that all the modes used by any
         specific bitrate tweaking use the same floor */
      int submap=info->chmuxlist[i];

overreads later in mapping0_forward since chmuxlist is a fixed array of
256 elements max.

parent c7840572

Hide whitespace changes

Inline Side-by-side

Thomas Daede @TD-Linux
mentioned in issue #2329 (closed)
· Dec 11, 2017

mentioned in issue #2329 (closed)

mentioned in issue #2329

Toggle commit list
Thomas Daede @TD-Linux
mentioned in issue #2332 (closed)
· Mar 17, 2018

mentioned in issue #2332 (closed)

mentioned in issue #2332

Toggle commit list

Please register or to comment