File ffmpeg-7-CVE-2025-0518.patch of Package A_tw-ffmpeg-7

30
 
1
From b5b6391d64807578ab872dc58fb8aa621dcfc38a Mon Sep 17 00:00:00 2001
2
From: Michael Niedermayer <michael@niedermayer.cc>
3
Date: Mon, 6 Jan 2025 22:01:39 +0100
4
Subject: [PATCH] avfilter/af_pan: Fix sscanf() use
5
6
Fixes: Memory Data Leak
7
8
Found-by: Simcha Kosman <simcha.kosman@cyberark.com>
9
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
10
---
11
 libavfilter/af_pan.c | 2 +-
12
 1 file changed, 1 insertion(+), 1 deletion(-)
13
14
diff --git a/libavfilter/af_pan.c b/libavfilter/af_pan.c
15
index 0d20b0307b..5feb2439c7 100644
16
--- a/libavfilter/af_pan.c
17
+++ b/libavfilter/af_pan.c
18
@@ -196,7 +196,7 @@ static av_cold int init(AVFilterContext *ctx)
19
         sign = 1;
20
         while (1) {
21
             gain = 1;
22
-            if (sscanf(arg, "%lf%n *%n", &gain, &len, &len))
23
+            if (sscanf(arg, "%lf%n *%n", &gain, &len, &len) >= 1)
24
                 arg += len;
25
             if (parse_channel_name(&arg, &in_ch_id, &named)){
26
                 av_log(ctx, AV_LOG_ERROR,
27
--
28
2.44.0
29
30
Locations
Help
Contact