oysteikt/mpd
0
0
Fork 0
Code Issues Pull Requests Releases Activity

modplug: check size limit before appending new buffer

Browse Source 
Don't enlarge the GByteArray when the size limit may overflow in this
operation; check the size limit first.
This commit is contained in:
Max Kellermann 2009-01-24 19:16:20 +01:00
parent b53e80d785
commit 4a4c6fb6dc
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
src/decoder/modplug_plugin.c
View File

@ -57,19 +57,19 @@ static GByteArray *mod_loadfile(struct decoder *decoder, struct input_stream *is
data = g_malloc(MODPLUG_READ_BLOCK); data = g_malloc(MODPLUG_READ_BLOCK);
do { do {
ret = decoder_read(decoder, is, data, MODPLUG_READ_BLOCK); ret = decoder_read(decoder, is, data, MODPLUG_READ_BLOCK);
if (ret > 0) { if (ret == 0) {
g_byte_array_append(bdatas, data, ret);
} else {
//end of file, or read error //end of file, or read error
break; break;
} }
if (bdatas->len > MODPLUG_FILE_LIMIT) { if (bdatas->len + ret > MODPLUG_FILE_LIMIT) {
g_warning("stream too large\n"); g_warning("stream too large\n");
g_free(data); g_free(data);
g_byte_array_free(bdatas, TRUE); g_byte_array_free(bdatas, TRUE);
return NULL; return NULL;
} }
g_byte_array_append(bdatas, data, ret);
} while (input_stream_eof(is)); } while (input_stream_eof(is));
g_free(data); g_free(data);