Skip to content
Permalink
Browse files

src/aiff.c: Fix a buffer read overflow

Secunia Advisory SA76717.

Found by: Laurent Delosieres, Secunia Research at Flexera Software
  • Loading branch information...
erikd committed May 23, 2017
1 parent 66aa47f commit f833c53cb596e9e1792949f762e0b33661822748
Showing with 1 addition and 1 deletion.
  1. +1 −1 src/aiff.c
@@ -1759,7 +1759,7 @@ aiff_read_chanmap (SF_PRIVATE * psf, unsigned dword)
psf_binheader_readf (psf, "j", dword - bytesread) ;

if (map_info->channel_map != NULL)
{ size_t chanmap_size = psf->sf.channels * sizeof (psf->channel_map [0]) ;
{ size_t chanmap_size = SF_MIN (psf->sf.channels, layout_tag & 0xffff) * sizeof (psf->channel_map [0]) ;

free (psf->channel_map) ;

0 comments on commit f833c53

Please sign in to comment.
You can’t perform that action at this time.