src/libFLAC/stream_decoder.c : Fix buffer read overflow.

This is CVE-2014-8962. Reported-by: Michele Spagnuolo, Google Security Team <mikispag@google.com>
2014-11-18 07:20:25 -08:00 · 2014-11-18 07:20:25 -08:00 · 5b3033a2b3
commit 5b3033a2b3
parent d8d171705a
1 changed files with 5 additions and 1 deletions
--- a/src/libFLAC/stream_decoder.c
+++ b/src/libFLAC/stream_decoder.c
@ -71,7 +71,7 @@ FLAC_API int FLAC_API_SUPPORTS_OGG_FLAC =
 *
 ***********************************************************************/

-static FLAC__byte ID3V2_TAG_[3] = { 'I', 'D', '3' };
+static const FLAC__byte ID3V2_TAG_[3] = { 'I', 'D', '3' };

 /***********************************************************************
 *
@ -1361,6 +1361,10 @@ FLAC__bool find_metadata_(FLAC__StreamDecoder *decoder)
 			id = 0;
 			continue;
 		}
+
+		if(id >= 3)
+			return false;
+
 		if(x == ID3V2_TAG_[id]) {
 			id++;
 			i = 0;