[FFmpeg-cvslog] avformat/ftp: Fix Out-of-Bounds Access and Information Leak in ftp.c:393
Wenxiang Qian
git at videolan.org
Fri May 10 22:02:34 EEST 2019
ffmpeg | branch: release/3.2 | Wenxiang Qian <leonwxqian at qq.com> | Wed Feb 13 08:47:20 2019 +0100| [dacc00a2e336fb5fa6403044d3dc5212a48c09ca] | committer: Michael Niedermayer
avformat/ftp: Fix Out-of-Bounds Access and Information Leak in ftp.c:393
Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
(cherry picked from commit a142ffdcaec06fcbf7d4b00dbb0e5ddfb9e3344d)
Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=dacc00a2e336fb5fa6403044d3dc5212a48c09ca
---
libavformat/ftp.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/libavformat/ftp.c b/libavformat/ftp.c
index 0663b47bc4..1d460ff66d 100644
--- a/libavformat/ftp.c
+++ b/libavformat/ftp.c
@@ -386,7 +386,7 @@ static int ftp_file_size(FTPContext *s)
static const int size_codes[] = {213, 0};
snprintf(command, sizeof(command), "SIZE %s\r\n", s->path);
- if (ftp_send_command(s, command, size_codes, &res) == 213 && res) {
+ if (ftp_send_command(s, command, size_codes, &res) == 213 && res && strlen(res) > 4) {
s->filesize = strtoll(&res[4], NULL, 10);
} else {
s->filesize = -1;
More information about the ffmpeg-cvslog
mailing list