gstreamer

mirror of https://gitlab.freedesktop.org/gstreamer/gstreamer.git synced 2025-03-05 19:31:26 +00:00

History

Sebastian Dröge cf887f1b8e matroskademux: Avoid integer-overflow resulting in heap corruption in WavPack header handling code blocksize + WAVPACK4_HEADER_SIZE might overflow gsize, which then results in allocating a very small buffer. Into that buffer blocksize data is memcpy'd later which then causes out of bound writes and can potentially lead to anything from crashes to remote code execution. Thanks to Adam Doupe for analyzing and reporting the issue. CVE: CVE-2022-1920 https://gstreamer.freedesktop.org/security/sa-2022-0004.html Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/1226 Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/2612>		2022-06-15 18:35:12 +00:00
..
ebml-ids.h
ebml-read.c	matroska: Use g_array_unref everywhere	2021-11-12 12:28:40 +00:00
ebml-read.h
ebml-write.c
ebml-write.h
gstmatroskaelement.c
gstmatroskaelements.h
lzo.c
lzo.h
matroska-demux.c	matroskademux: Avoid integer-overflow resulting in heap corruption in WavPack header handling code	2022-06-15 18:35:12 +00:00
matroska-demux.h	matroskademux: Don't parse Tracks element twice	2022-03-01 13:17:40 +00:00
matroska-ids.c	matroska: Use g_array_unref everywhere	2021-11-12 12:28:40 +00:00
matroska-ids.h
matroska-mux.c	matroska: Fix AV1 alignment to TU	2022-03-04 21:58:15 +00:00
matroska-mux.h
matroska-parse.c
matroska-parse.h
matroska-read-common.c	matroskademux: Fix integer overflows in zlib/bz2/etc decompression code	2022-06-15 17:50:55 +00:00
matroska-read-common.h
matroska.c
meson.build
webm-mux.c
webm-mux.h