[vlc-commits] ogg: Fix a heap buffer overflow.

Hugo Beauzée-Luyssen git at videolan.org
Wed May 2 10:58:29 CEST 2012


vlc/vlc-2.0 | branch: master | Hugo Beauzée-Luyssen <beauze.h at gmail.com> | Mon Apr 30 11:50:17 2012 +0200| [16e9e126333fb7acb47d363366fee3deadc8331e] | committer: Jean-Baptiste Kempf

ogg: Fix a heap buffer overflow.

Reported by: An anonymous contributor working with the SecuriTeam Secure
Disclosure
program (http://www.beyondsecurity.com/ssd.html)
(cherry picked from commit 6a41b030f5b7fcbe5ad7249c374172c0fdc29add)

Signed-off-by: Jean-Baptiste Kempf <jb at videolan.org>

> http://git.videolan.org/gitweb.cgi/vlc/vlc-2.0.git/?a=commit;h=16e9e126333fb7acb47d363366fee3deadc8331e
---

 modules/demux/ogg.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/modules/demux/ogg.c b/modules/demux/ogg.c
index e659b9c..da6dab3 100644
--- a/modules/demux/ogg.c
+++ b/modules/demux/ogg.c
@@ -624,7 +624,7 @@ static void Ogg_DecodePacket( demux_t *p_demux,
             if( p_stream->p_headers )
             {
                 memcpy( (unsigned char *)p_stream->p_headers + p_stream->i_headers - p_oggpacket->bytes,
-                        p_oggpacket->packet, p_stream->i_headers );
+                        p_oggpacket->packet, p_oggpacket->bytes );
             }
             else
             {



More information about the vlc-commits mailing list