Wim Taymans 4de0f83aca security: add missing NULL checks after realloc/strdup in LV2 plugin ... Memory Safety: Medium Two issues in the LV2 filter-graph plugin: 1. uri_table_map(): realloc() result was assigned directly to table->data, losing the original pointer on failure (memory leak) and causing a NULL pointer dereference on the next access. Also the subsequent strdup() had no NULL check. Fixed by using a temporary pointer for realloc and checking strdup's return. 2. lv2_state_retrieve(): realloc() of sd->tmp was used without a NULL check, so a failed allocation would cause sd->tmp to become NULL and be immediately passed to spa_json_parse_stringn(). Fixed by checking the realloc result before assignment. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>		2026-04-29 11:35:08 +02:00
..
examples	spa: examples: fix getopt usage + typos in adapter-control	2025-10-26 14:12:19 +00:00
include	security: fix format string vulnerability in hook.h example code	2026-04-29 11:33:44 +02:00
include-private/spa-private	spa: move dbus helpers out of bluez plugin	2024-02-05 13:03:20 +00:00
lib	spa: update lib.c	2026-03-09 18:33:32 +01:00
plugins	security: add missing NULL checks after realloc/strdup in LV2 plugin	2026-04-29 11:35:08 +02:00
tests	spa/tests: remove unused #include <linux/limits.h>	2026-03-11 21:50:21 +00:00
tools	tools: port various tools to the new json-builder	2026-02-26 10:51:17 +01:00
meson.build	meson: Always use -fno-strict-aliasing and -fno-strict-overflow	2025-07-24 07:30:28 +00:00