mirrors/pipewire
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/pipewire/pipewire.git synced 2026-06-17 14:33:04 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
pipewire/spa/plugins/bluez5
History
Wim Taymans 398326f19c security: add missing NULL checks after calloc in Bluetooth backend 
Memory Safety: Medium

Two calloc() calls in backend-native.c do not check the return value
before dereferencing the pointer:

1. rfcomm_send_cmd_enqueue() allocates an rfcomm_cmd struct and
   immediately passes cmd->cmd to vsnprintf without a NULL check.

2. rfcomm_hfp_ag_clcc() allocates an updated_call struct and
   immediately dereferences updated_call->id without a NULL check.

Both would crash on allocation failure. Add NULL checks that return
an error instead of dereferencing NULL.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-04-29 14:22:53 +02:00
..
g722
a2dp-codec-aac.c bluez5: aac: Use VBR encoding with Mode 5 by default 2026-04-05 20:24:47 +03:00
a2dp-codec-aptx.c
a2dp-codec-caps.h
a2dp-codec-faststream.c
a2dp-codec-lc3plus.c security: fix integer overflow in Bluetooth codec codesize calculations 2026-04-24 15:55:35 +02:00
a2dp-codec-ldac.c
a2dp-codec-opus-g.c security: fix integer overflow in Bluetooth codec codesize calculations 2026-04-24 15:55:35 +02:00
a2dp-codec-opus.c security: fix integer overflow in Bluetooth codec codesize calculations 2026-04-24 15:55:35 +02:00
a2dp-codec-sbc.c bluez5: sbc: clean up codec_enum_config 2026-03-09 15:53:35 +00:00
asha-codec-g722.c
backend-hsphfpd.c security: add missing NULL checks after strdup/calloc in backend-hsphfpd 2026-04-29 11:36:32 +02:00
backend-native.c security: add missing NULL checks after calloc in Bluetooth backend 2026-04-29 14:22:53 +02:00
backend-ofono.c
bap-codec-caps.h
bap-codec-lc3.c security: fix integer overflow in Bluetooth codec codesize calculations 2026-04-24 15:55:35 +02:00
bluez-hardware.conf bluez5: more MT7925 quirks 2026-04-19 16:02:56 +00:00
bluez5-dbus.c security: reject negative DBus array lengths in Bluetooth transport 2026-04-27 11:04:52 +02:00
bluez5-device.c bluez: Discard latency and quality codecs worse than SBC for A2DP auto profiles. 2026-03-24 07:28:14 +00:00
bt-latency.h
codec-loader.c
codec-loader.h
dbus-monitor.c
dbus-monitor.h
decode-buffer.h spa: add and use spa_overflow macros 2026-04-24 15:55:35 +02:00
defs.h bluez5: add quirk for LC3-24kHz for HFP 2026-04-17 22:10:32 +00:00
hci.c
hfp-codec-caps.h
hfp-codec-cvsd.c
hfp-codec-lc3-a127.c
hfp-codec-lc3-swb.c
hfp-codec-msbc.c
hfp-h2.h
iso-io.c bluez5: iso-io: don't use streams without tx_latency enabled for fill level calculation 2026-04-09 08:00:37 +00:00
iso-io.h
media-codecs.c
media-codecs.h
media-sink.c bluez5: fix crash due to debug_mono 2026-01-12 19:57:56 +02:00
media-source.c bluez5: media-source: don't crash if BAP streams doesn't have iso_io 2026-03-19 15:39:18 +00:00
meson.build
midi-enum.c
midi-node.c mixer: handle control.ump property 2026-03-25 11:59:43 +01:00
midi-parser.c
midi-server.c security: add missing NULL check after strdup in MIDI server 2026-04-29 11:36:53 +02:00
midi.h
modemmanager.c security: add missing NULL checks after strdup in modemmanager 2026-04-29 11:34:37 +02:00
modemmanager.h
org.bluez.xml
player.c
player.h
plc.h
plugin.c
quirks.c bluez5: add quirk for LC3-24kHz for HFP 2026-04-17 22:10:32 +00:00
rate-control.h Fix spelling errors in comments and log messages 2026-04-13 07:20:11 +00:00
README-MIDI.md
README-OPUS-A2DP.md
README-SBC-XQ.md
README-Telephony.md
rtp.h
sco-io.c
telephony.c spa: add and use spa_overflow macros 2026-04-24 15:55:35 +02:00
telephony.h
test-midi.c
upower.c
upower.h