buildroot

Description: fix buffer overflow when changing both sample format and

 number of channels

Origin: https://github.com/mpruett/audiofile/pull/25

Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/audiofile/+bug/1502721

Bug-Debian: https://bugs.debian.org/801102

​

Downloaded from

https://gitweb.gentoo.org/repo/gentoo.git/tree/media-libs/audiofile/files/audiofile-0.3.6-CVE-2015-7747.patch

​

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>

​

--- a/libaudiofile/modules/ModuleState.cpp

+++ b/libaudiofile/modules/ModuleState.cpp

@@ -402,7 +402,7 @@ status ModuleState::arrange(AFfilehandle

        addModule(new Transform(outfc, in.pcm, out.pcm));

    if (in.channelCount != out.channelCount)

-       addModule(new ApplyChannelMatrix(infc, isReading,

+       addModule(new ApplyChannelMatrix(outfc, isReading,

            in.channelCount, out.channelCount,

            in.pcm.minClip, in.pcm.maxClip,

            track->channelMatrix));

--- a/test/Makefile.am

+++ b/test/Makefile.am

@@ -26,6 +26,7 @@ TESTS = \

    VirtualFile \

    floatto24 \

    query2 \

+   sixteen-stereo-to-eight-mono \

    sixteen-to-eight \

    testchannelmatrix \

    testdouble \

@@ -139,6 +140,7 @@ printmarkers_SOURCES = printmarkers.c

 printmarkers_LDADD = $(LIBAUDIOFILE) -lm

 sixteen_to_eight_SOURCES = sixteen-to-eight.c TestUtilities.cpp TestUtilities.h

+sixteen_stereo_to_eight_mono_SOURCES = sixteen-stereo-to-eight-mono.c TestUtilities.cpp TestUtilities.h

 testchannelmatrix_SOURCES = testchannelmatrix.c TestUtilities.cpp TestUtilities.h

--- /dev/null

+++ b/test/sixteen-stereo-to-eight-mono.c

@@ -0,0 +1,118 @@

+/*

+   Audio File Library

+

+   Copyright 2000, Silicon Graphics, Inc.

+

+   This program is free software; you can redistribute it and/or modify

+   it under the terms of the GNU General Public License as published by

+   the Free Software Foundation; either version 2 of the License, or

+   (at your option) any later version.

+

+   This program is distributed in the hope that it will be useful,

+   but WITHOUT ANY WARRANTY; without even the implied warranty of

+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

+   GNU General Public License for more details.

+

+   You should have received a copy of the GNU General Public License along

+   with this program; if not, write to the Free Software Foundation, Inc.,

+   51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.

+*/

+