[MPlayer-G2-dev] CVS: g2/stream http.c,1.1.1.1,1.2
Michael Niedermayer CVS
syncmail at mplayerhq.hu
Tue Mar 30 13:19:08 CEST 2004
CVS change done by Michael Niedermayer CVS
Update of /cvsroot/mplayer/g2/stream
In directory mail:/var2/tmp/cvs-serv27174
Modified Files:
http.c
Log Message:
remote exploitable heap overflow fix by ("blexim" <blexim at hush dot com>)
Index: http.c
===================================================================
RCS file: /cvsroot/mplayer/g2/stream/http.c,v
retrieving revision 1.1.1.1
retrieving revision 1.2
diff -u -r1.1.1.1 -r1.2
--- http.c 31 Jan 2004 20:16:18 -0000 1.1.1.1
+++ http.c 30 Mar 2004 11:19:06 -0000 1.2
@@ -175,7 +175,7 @@
if( http_hdr->method==NULL ) http_set_method( http_hdr, "GET");
if( http_hdr->uri==NULL ) http_set_uri( http_hdr, "/");
else {
- uri = (char*)malloc(strlen(http_hdr->uri)*2);
+ uri = (char*)malloc((strlen(http_hdr->uri)*3) + 1);
if( uri==NULL ) {
mp_msg(MSGT_NETWORK,MSGL_ERR,"Memory allocation failed\n");
return NULL;
More information about the MPlayer-G2-dev
mailing list