mirrors/pipewire
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/pipewire/pipewire.git synced 2026-04-29 06:46:38 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
pipewire/src/modules/module-raop
History
Wim Taymans 9b845f4415 security: fix unsafe atoi() on network RTSP status code 
Input Validation: Medium

atoi() on network-received data returns 0 on parse failure, which is
indistinguishable from a valid "0" input. It also accepts negative
values and does not detect overflow. Replace with strtol() and
validate that the status code is in the valid HTTP/RTSP range
(100-599) to prevent protocol state confusion from malformed
responses.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-04-27 16:13:14 +02:00
..
base64.h module-raop: move base64 to separate file 2026-02-26 12:00:31 +01:00
rtsp-client.c security: fix unsafe atoi() on network RTSP status code 2026-04-27 16:13:14 +02:00
rtsp-client.h *: don't include standard C headers inside of extern "C" 2025-05-30 09:48:28 +01:00