[prev in list] [next in list] [prev in thread] [next in thread]
List: helix-filesystem-cvs
Subject: [Filesystem-cvs] http httpfsys.cpp,1.72.2.25,1.72.2.26
From: kprcela () helixcommunity ! org
Date: 2009-10-02 11:54:09
Message-ID: 200910021304.n92D4GHc032172 () mailer ! progressive-comp ! com
[Download RAW message or body]
Update of /cvsroot/filesystem/http
In directory cvs01.internal.helixcommunity.org:/tmp/cvs-serv15464
Modified Files:
Tag: hxclient_1_5_0_cayenne
httpfsys.cpp
Log Message:
Fix for Bugzilla Bug 246906: Security Vulnerability: ZDI-CAN-509: SMIL File Format \
StreamTitle Heap Corruption Vulnerability
Index: httpfsys.cpp
===================================================================
RCS file: /cvsroot/filesystem/http/httpfsys.cpp,v
retrieving revision 1.72.2.25
retrieving revision 1.72.2.26
diff -u -d -r1.72.2.25 -r1.72.2.26
--- httpfsys.cpp 18 Jan 2008 20:46:24 -0000 1.72.2.25
+++ httpfsys.cpp 2 Oct 2009 11:54:06 -0000 1.72.2.26
@@ -8714,7 +8714,7 @@
// Get the length of just the song title
pTemp = HXFindCharN(pMetaStart, ';', ulMetaLength);
- if (pTemp)
+ if (pTemp && (pTemp - 1) > pMetaStart)
{
nLen = (pTemp - 1) - (pMetaStart);
}
_______________________________________________
Filesystem-cvs mailing list
Filesystem-cvs@helixcommunity.org
http://lists.helixcommunity.org/mailman/listinfo/filesystem-cvs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic