Crash when parsing bogus Opus packets

Sanjivkumarroshan / csipsimple

Automatically exported from code.google.com/p/csipsimple

0 stars 0 forks source link

Crash when parsing bogus Opus packets #2931

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago

When a bogus Opus packet is parsed opus_packet_parse will return a value < 0, 
which will overflow the unsigned variable where it's saved, creating a crash 
further down.

Original issue reported on code.google.com by saghul on 30 Apr 2015 at 11:31

GoogleCodeExporter commented 9 years ago

[deleted comment]

GoogleCodeExporter commented 9 years ago

Here is a patch: https://gist.github.com/saghul/c3d6a915398bea3b3ff3

Original comment by saghul on 30 Apr 2015 at 11:33

GoogleCodeExporter commented 9 years ago

Original comment by r3gis...@gmail.com on 22 Jun 2015 at 11:31

Changed state: Obsolete

GoogleCodeExporter commented 9 years ago

How is this bug obsolete? It hasn't been fixed yet AFAIS.

Original comment by saghul on 22 Jun 2015 at 11:36

GoogleCodeExporter commented 9 years ago

Migration to github is ongoing

Original comment by r3gis...@gmail.com on 22 Jun 2015 at 11:39

GoogleCodeExporter commented 9 years ago

Oh, thanks for the heads up!

Original comment by saghul on 22 Jun 2015 at 11:40