[MPlayer-dev-eng] [PATCH] Allow loading config per stream type.
Rich Felker
dalias at aerifal.cx
Fri Jan 4 07:41:06 CET 2008
On Thu, Jan 03, 2008 at 11:47:40PM +0100, Benjamin Zores wrote:
> Index: mplayer.c
> ===================================================================
> --- mplayer.c (revision 25593)
> +++ mplayer.c (working copy)
> @@ -839,8 +839,16 @@
> char cfg[strlen(file)+10];
This existing code may already be a vuln. VLA is unsafe whenever the
size is from an untrusted source (think playlist or something I
suppose...).
Rich
More information about the MPlayer-dev-eng
mailing list