[vlc-commits] subtitles: avoid VLA over untrusted input and variable shadowing
Rémi Denis-Courmont
git at videolan.org
Wed Aug 13 20:29:12 CEST 2014
vlc | branch: master | Rémi Denis-Courmont <remi at remlab.net> | Wed Aug 13 20:38:30 2014 +0300| [e2de299b79c5bd0aa4586bbeec044d8571b59b40] | committer: Rémi Denis-Courmont
subtitles: avoid VLA over untrusted input and variable shadowing
> http://git.videolan.org/gitweb.cgi/vlc.git/?a=commit;h=e2de299b79c5bd0aa4586bbeec044d8571b59b40
---
src/input/subtitles.c | 20 +++++++++-----------
1 file changed, 9 insertions(+), 11 deletions(-)
diff --git a/src/input/subtitles.c b/src/input/subtitles.c
index 085187b..35b5f4c 100644
--- a/src/input/subtitles.c
+++ b/src/input/subtitles.c
@@ -357,28 +357,26 @@ char **subtitles_Detect( input_thread_t *p_this, char *psz_path,
}
if( i_prio >= i_fuzzy )
{
- char psz_path[strlen( psz_dir ) + strlen( psz_name ) + 2];
struct stat st;
+ char *path;
- sprintf( psz_path, "%s"DIR_SEP"%s", psz_dir, psz_name );
- if( !strcmp( psz_path, psz_fname ) )
+ if( asprintf( &path, "%s"DIR_SEP"%s", psz_dir, psz_name ) < 0 )
continue;
- if( !vlc_stat( psz_path, &st ) && S_ISREG( st.st_mode ) && result )
+ if( strcmp( path, psz_fname )
+ && vlc_stat( path, &st ) == 0
+ && S_ISREG( st.st_mode ) && result )
{
msg_Dbg( p_this,
"autodetected subtitle: %s with priority %d",
- psz_path, i_prio );
+ path, i_prio );
result[i_sub_count].priority = i_prio;
- result[i_sub_count].psz_fname = strdup( psz_path );
+ result[i_sub_count].psz_fname = path;
+ path = NULL;
result[i_sub_count].psz_ext = strdup(tmp_fname_ext);
i_sub_count++;
}
- else
- {
- msg_Dbg( p_this, "stat failed (autodetecting subtitle: %s with priority %d)",
- psz_path, i_prio );
- }
+ free( path );
}
}
closedir( dir );
More information about the vlc-commits
mailing list