diff options
| author | Diego 'Flameeyes' Pettenò <flameeyes@gmail.com> | 2006-11-29 21:26:52 +0000 | 
|---|---|---|
| committer | Diego 'Flameeyes' Pettenò <flameeyes@gmail.com> | 2006-11-29 21:26:52 +0000 | 
| commit | 4fca100da81fd2a3fe96a7b05b19c54a2274080d (patch) | |
| tree | ecd78542b085bd60fd613ca4ad812f6a1aa2ca41 /src/video_out/video_out_directx.c | |
| parent | a0889ce51a988bba7ab0d66954972dfcfa2fa04e (diff) | |
| download | xine-lib-4fca100da81fd2a3fe96a7b05b19c54a2274080d.tar.gz xine-lib-4fca100da81fd2a3fe96a7b05b19c54a2274080d.tar.bz2 | |
Fix a serious overflow for the asf_header, use an alloca() buffer while reading rather than using a fixed-size buffer.
This fixes the crash reported by İsmail Dönmez in WMA files, and prevents possible exploits.
Also thanks to Tavis Ormandy for the help handling the problem.
CVS patchset: 8393
CVS date: 2006/11/29 21:26:52
Diffstat (limited to 'src/video_out/video_out_directx.c')
0 files changed, 0 insertions, 0 deletions
