mirrors/gstreamer
mirrors/gstreamer
1
1
Fork 0
mirror of https://gitlab.freedesktop.org/gstreamer/gstreamer.git synced 2024-11-25 11:11:08 +00:00
Code Issues 1 Projects Releases Wiki Activity

typefindhelper: Fix overflow some more

Browse source 
Nothing guaranteed that off+size wouldn't exceed a 2**64 value.

Instead we reverse the operation and use a subtraction.
This commit is contained in:
Edward Hervey 2017-11-04 11:45:54 +01:00 committed by Edward Hervey
parent 4ccdad084b
commit 40187f9247
1 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
libs/gst/base/gsttypefindhelper.c
View file

@ -446,7 +446,15 @@ buf_helper_find_peek (gpointer data, gint64 off, guint size)
return NULL; return NULL;
} }
if (((guint64) off + size) <= helper->size) /* If we request beyond the available size, we're sure we can't return
* anything regardless of the requested offset */
if (size > helper->size)
return NULL;
/* Only return data if there's enough room left for the given offset.
* This is the same as "if (off + size <= helper->size)" except that
* it doesn't exceed type limits */
if (off <= helper->size - size)
return helper->data + off; return helper->data + off;
return NULL; return NULL;