[MPlayer-cvslog] r25930 - branches/1.0rc2/stream/url.c

rtogni subversion at mplayerhq.hu
Wed Jan 30 00:55:58 CET 2008


Author: rtogni
Date: Wed Jan 30 00:55:58 2008
New Revision: 25930

Log:
Clear tmp between ip6 check and string escape to prevent reuse of the 
buffer, in order to prevent a possible buffer overflow on malformed 
urls.

Based on a patch by Adam Bozanich abozanich musecurity com

Security patch backported from r25823


Modified:
   branches/1.0rc2/stream/url.c

Modified: branches/1.0rc2/stream/url.c
==============================================================================
--- branches/1.0rc2/stream/url.c	(original)
+++ branches/1.0rc2/stream/url.c	Wed Jan 30 00:55:58 2008
@@ -328,6 +328,7 @@ url_escape_string(char *outbuf, const ch
 		}
 	}
 	
+	tmp = NULL;
 	while(i < len) {
 		// look for the next char that must be kept
 		for  (j=i;j<len;j++) {



More information about the MPlayer-cvslog mailing list