From a3bf3094d17dded324c713d5d55968caa779a895 Mon Sep 17 00:00:00 2001 From: Edward Hervey Date: Thu, 7 Dec 2017 11:03:20 +0100 Subject: [PATCH] typefind: Fix ico out-of-bound read The furthest we go to verify the data is reading a guint32 at offset 18, therefore make sure we can read as much. --- gst/typefind/gsttypefindfunctions.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gst/typefind/gsttypefindfunctions.c b/gst/typefind/gsttypefindfunctions.c index 38a50e7baf..f905dda26b 100644 --- a/gst/typefind/gsttypefindfunctions.c +++ b/gst/typefind/gsttypefindfunctions.c @@ -5337,7 +5337,7 @@ windows_icon_typefind (GstTypeFind * find, gpointer user_data) gint32 size, offset; datalen = gst_type_find_get_length (find); - if (datalen < 18) + if (datalen < 22) return; if ((data = gst_type_find_peek (find, 0, 6)) == NULL) return;