mirrors/pipewire
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/pipewire/pipewire.git synced 2026-05-03 06:47:04 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

security: fix one-byte OOB read in module_args_add_props

Browse source 
A trailing backslash in a module argument string would cause the
escape handling to advance past the null terminator, reading one
byte out of bounds on the next loop iteration.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Wim Taymans 2026-04-29 18:24:13 +02:00
parent c6faaff410
commit 6d2600c09d
1 changed files with 4 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

5
src/modules/module-protocol-pulse/module.c
View file

@ -147,8 +147,11 @@ void module_args_add_props(struct pw_properties *props, const char *str)
for (e = p; *p ;) { for (e = p; *p ;) {
if (*p == f) if (*p == f)
break; break;
if (*p == '\\') if (*p == '\\') {
p++; p++;
if (*p == '\0')
break;
}
*e++ = *p++; *e++ = *p++;
} }
if (*p != '\0') if (*p != '\0')