[FFmpeg-devel] [PATCH] lavf/id3v2: fail read_apic on EOF reading mimetype

chcunningham Wed, 12 Dec 2018 19:00:04 -0800

avio_read may return EOF, leaving the mimetype array unitialized. fail
early when this occurs to avoid using the array in an unitialized state.
---
 libavformat/id3v2.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)


diff --git a/libavformat/id3v2.c b/libavformat/id3v2.c
index f7de26a1d8..7c4d1f8677 100644
--- a/libavformat/id3v2.c
+++ b/libavformat/id3v2.c
@@ -612,7 +612,9 @@ static void read_apic(AVFormatContext *s, AVIOContext *pb, 
int taglen,
     if (isv34) {
         taglen -= avio_get_str(pb, taglen, mimetype, sizeof(mimetype));
     } else {
-        avio_read(pb, mimetype, 3);
+        if (avio_read(pb, mimetype, 3) < 0)
+            goto fail;
+
         mimetype[3] = 0;
         taglen    -= 3;
     }
-- 
2.20.0.rc2.403.gdbc3b29805-goog

_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

[FFmpeg-devel] [PATCH] lavf/id3v2: fail read_apic on EOF reading mimetype

Reply via email to