- 12 Dec, 2014 4 commits
-
-
Fabian Yamaguchi authored
It should fix a possible invalid memory access When streaming ogg-files via rtp, an ogg-file can trigger an invalid write access using an overly long 'configuration' string. The original code attemps to allocate space to hold the string on the stack and hence, cannot verify if allocation succeeds. Instead, we now allocate the buffer on the heap and return if allocation fails. In detail, rtp_packetize_xiph_config allocates a buffer on the stack at (1) where the size depends on the local variable 'len'. The variable 'len' is calculated at (0) to be the length of a string contained in a specially crafted Ogg Vorbis file, and therefore, it is attacker-controlled. Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org> (cherry picked from commit 204291467724867b79735c0ee3aeb0dbc2200f97) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Fabian Yamaguchi authored
On 32 bit builds, parsing of update status files with a size of 4294967295 or more lead to an integer truncation in a call to malloc and a subsequent buffer overflow. This happened prior to checking the files' signature. The commit fixes this by disallowing overly large status files (above 65k in practice) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org> (cherry picked from commit fbe2837bc80f155c001781041a54c58b5524fc14) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Felix Paul Kühne authored
(cherry picked from commit 8d48e95e9fe21e92e5da0ed0613ff86c5aa764f8) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Jean-Baptiste Kempf authored
(cherry picked from commit 79db2468b244a6ca0d08cf61072b331f01fb93f7) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
- 09 Dec, 2014 2 commits
-
-
Jean-Baptiste Kempf authored
(cherry picked from commit 975a88e1e8e50608b5dfe1e34342d7dc06a4b6fe) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Jean-Baptiste Kempf authored
(cherry picked from commit 6badf29945bd34120dc54461a9d4b96510c4e7c8) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
- 08 Dec, 2014 1 commit
-
-
Fabian Yamaguchi authored
We ensure that pbox->i_size is never smaller than 8 to avoid an integer underflow in the third argument of the subsequent call to memcpy. We also make sure no truncation occurs when passing values derived from the 64 bit integer p_box->i_size to arguments of malloc and memcpy that may be 32 bit integers on 32 bit platforms. Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org> (cherry picked from commit 2e7c7091a61aa5d07e7997b393d821e91f593c39) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
- 07 Dec, 2014 2 commits
-
-
Tristan Matthews authored
This reverts commit 67066bf6dccc61ff15b6385dd80451a025a5217d and 1a2780cbbc0ab64dacfedd132f1d95aecf3df45d as there are still some upstream issues to resolve. (cherry picked from commit c203a9083932ce7004d22a67d50c897a28921e07)
-
Felix Paul Kühne authored
(cherry picked from commit 1a2780cbbc0ab64dacfedd132f1d95aecf3df45d)
-
- 06 Dec, 2014 2 commits
-
-
Tristan Matthews authored
(cherry picked from commit 67066bf6dccc61ff15b6385dd80451a025a5217d)
-
Tristan Matthews authored
(cherry picked from commit b7c4173cb7cb5a4a8656abb4f1a59de6209562dd)
-
- 03 Dec, 2014 8 commits
-
-
Jean-Baptiste Kempf authored
-
Jean-Baptiste Kempf authored
(cherry picked from commit 0e2d8cd6f687004c4a53ec66b14992e2e0fea76c) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Jean-Baptiste Kempf authored
This mandates 8.1 though (cherry picked from commit daaa3c659102b9bdff731e632fa42eefde268fd0) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Thomas Guillem authored
On android 5.0, PrintMsg blocks on fprintf when stderr is locked by flockfile. This commit adds a default log callback for android in order to fix this issue, and in order to have early logs (before libvlc_log_set is called). Close #12870 Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org> (cherry picked from commit 1df6e651c0a46a99bcc99a66f98c7277d84aff16) Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
Jean-Baptiste Kempf authored
-
Rémi Denis-Courmont authored
(cherry picked from commit 4716a65fc63c00a3970f65848ce3d94809d22ef0) Signed-off-by: KO Myung-Hun <komh@chollian.net> Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
KO Myung-Hun authored
Move freeaddrinfo() to compat/. ----- CCLD libstream_out_standard_plugin.la weakld: error: Unresolved symbol (UNDEF) '_freeaddrinfo'. weakld: info: The symbol is referenced by: P:\tmp\ldconv_libstream_out_standard_plugin_48c454704dac1660d0.obj Ignoring unresolved externals reported from weak prelinker. Error! E2028: _freeaddrinfo is an undefined reference file P:/tmp\ldconv_libstream_out_standard_plugin_48c454704dac1660d0.obj(ldconv_libstream_out_standard_plugin_48c454704dac1660d0.obj): undefined symbol _freeaddrinfo ----- Signed-off-by: Rémi Denis-Courmont <remi@remlab.net> (cherry picked from commit 3180272a56bdb3933219e1cc2c57d0285a7adbd3) Signed-off-by: KO Myung-Hun <komh@chollian.net> Conflicts: configure.ac Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
KO Myung-Hun authored
Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org> (cherry picked from commit b149f63b2353e19570bac9481ac80fb63f62012b) Signed-off-by: KO Myung-Hun <komh@chollian.net> Signed-off-by: Jean-Baptiste Kempf <jb@videolan.org>
-
- 02 Dec, 2014 21 commits
-
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
Christoph Miebach authored
-
VideoLAN authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
Dean Lee authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
Andriy Bandura authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
Kaya Zeren authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
A. Regnander authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
VideoLAN authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
VideoLAN authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
Marián Hikaník authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
VideoLAN authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
Michał Trzebiatowski authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-
Thomas De Rocker authored
Signed-off-by: Christoph Miebach <christoph.miebach@web.de>
-