mxfdemux: Check number of channels for AES3 audio - gstreamer/gstreamer - GStreamer open-source multimedia framework core library (mirrored from https://gitlab.freedesktop.org/gstreamer/gstreamer)

diff options

author	Sebastian Dröge <sebastian@centricular.com>	2023-08-10 15:47:03 +0300
committer	Tim-Philipp Müller <tim@centricular.com>	2023-09-20 15:14:27 +0100
commit	1edd1c38dcc5d27e7c5649d999ee8278872a16d4 (patch)
tree	080bd2bb5b51ac5f021ecce5d0deb102e1477c1e /subprojects/gst-plugins-good/gst-plugins-good.doap
parent	f73fc41f2ca6a0cd4e883aee64bf8e1c15ff68ce (diff)

mxfdemux: Check number of channels for AES3 audio

Only up to 8 channels are allowed and using a higher number would cause integer overflows when copying the data, and lead to out of bound writes. Also check that each buffer is at least 4 bytes long to avoid another overflow. Fixes ZDI-CAN-21661, CVE-2023-40475 Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/2897 Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/5365>

Diffstat (limited to 'subprojects/gst-plugins-good/gst-plugins-good.doap')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: