[Mplayer-cvslog] CVS: main/libmpdemux http.c,1.17,1.18
Michael Niedermayer CVS
syncmail at mplayerhq.hu
Tue Mar 30 12:58:43 CEST 2004
CVS change done by Michael Niedermayer CVS
Update of /cvsroot/mplayer/main/libmpdemux
In directory mail:/var2/tmp/cvs-serv342
Modified Files:
http.c
Log Message:
remote exploitable heap overflow fix by ("blexim" <blexim at hush dot com>)
Index: http.c
===================================================================
RCS file: /cvsroot/mplayer/main/libmpdemux/http.c,v
retrieving revision 1.17
retrieving revision 1.18
diff -u -r1.17 -r1.18
--- http.c 13 Nov 2002 09:02:55 -0000 1.17
+++ http.c 30 Mar 2004 10:58:41 -0000 1.18
@@ -175,7 +175,7 @@
if( http_hdr->method==NULL ) http_set_method( http_hdr, "GET");
if( http_hdr->uri==NULL ) http_set_uri( http_hdr, "/");
else {
- uri = (char*)malloc(strlen(http_hdr->uri)*2);
+ uri = (char*)malloc((strlen(http_hdr->uri)*3) + 1);
if( uri==NULL ) {
mp_msg(MSGT_NETWORK,MSGL_ERR,"Memory allocation failed\n");
return NULL;
More information about the MPlayer-cvslog
mailing list