[MPlayer-dev-eng] [PATCH] unchecked result of ICDecompressGetFormatSize leads to crash
Gianluigi Tiesi
mplayer at netfarm.it
Sun Oct 21 14:30:07 CEST 2007
On Wed, Oct 17, 2007 at 07:03:18AM +0200, Gianluigi Tiesi wrote:
> Currently the vfw code calls ICDecompressGetFormatSize
> (a macro to SendMessage)
> it should return the size of the struct, but
> while using vp6vfw.dll and/or maybe other dlls,
> the returned value is -2
>
> then mplayer does malloc(-2)
> and memset(,,-2)
> then crashes
>
> I've not added free(priv) since also the other check does not
> free it
>
> Regards
no reviews?
Regards
--
Gianluigi Tiesi <sherpya at netfarm.it>
EDP Project Leader
Netfarm S.r.l. - http://www.netfarm.it/
Free Software: http://oss.netfarm.it/
More information about the MPlayer-dev-eng
mailing list