[MPlayer-cvslog] r25930 - branches/1.0rc2/stream/url.c
rtogni
subversion at mplayerhq.hu
Wed Jan 30 00:55:58 CET 2008
Author: rtogni
Date: Wed Jan 30 00:55:58 2008
New Revision: 25930
Log:
Clear tmp between ip6 check and string escape to prevent reuse of the
buffer, in order to prevent a possible buffer overflow on malformed
urls.
Based on a patch by Adam Bozanich abozanich musecurity com
Security patch backported from r25823
Modified:
branches/1.0rc2/stream/url.c
Modified: branches/1.0rc2/stream/url.c
==============================================================================
--- branches/1.0rc2/stream/url.c (original)
+++ branches/1.0rc2/stream/url.c Wed Jan 30 00:55:58 2008
@@ -328,6 +328,7 @@ url_escape_string(char *outbuf, const ch
}
}
+ tmp = NULL;
while(i < len) {
// look for the next char that must be kept
for (j=i;j<len;j++) {
More information about the MPlayer-cvslog
mailing list