[MPlayer-dev-eng] [PATCH] Allow loading config per stream type.

Rich Felker dalias at aerifal.cx
Fri Jan 4 07:41:06 CET 2008


On Thu, Jan 03, 2008 at 11:47:40PM +0100, Benjamin Zores wrote:
> Index: mplayer.c
> ===================================================================
> --- mplayer.c	(revision 25593)
> +++ mplayer.c	(working copy)
> @@ -839,8 +839,16 @@
>      char cfg[strlen(file)+10];

This existing code may already be a vuln. VLA is unsafe whenever the
size is from an untrusted source (think playlist or something I
suppose...).

Rich



More information about the MPlayer-dev-eng mailing list