aboutsummaryrefslogtreecommitdiffstats
path: root/src/tag_ape.c (unfollow)
Commit message (Collapse)AuthorFilesLines
2009-07-19ape: added protection against large memory allocationsMax Kellermann1-0/+3
The function tag_ape_load() retrieves a 32 bit unsigned integer from the input file, and passes it to g_malloc(). This is dangerous, and may be used for a denial of service attack on MPD.
2009-07-19tag_ape: removed redundant length checkMax Kellermann1-3/+4
Extend the tagLen check after reading it. Removed the second (redundant) check after the subtraction.
2009-07-18ape: check the tag size (fixes integer underflow)Max Kellermann1-1/+1
The expression "tagLen - size > 0" may result in an integer underflow and a buffer overflow, when "size" is larger than "tagLen". "size" is read from the input file, and must not be trusted. This patch changes the expression to "tagLen > size", which is a lot safer.
2009-04-28tag: use g_ascii_strcasecmp() instead of strcasecmp()Max Kellermann1-1/+1
strcasecmp() is locale dependent, making it a bad choice for internal string comparisons.
2009-03-13all: Update copyright header.Avuton Olrich1-3/+4
This updates the copyright header to all be the same, which is pretty much an update of where to mail request for a copy of the GPL and the years of the MPD project. This also puts all committers under 'The Music Player Project' umbrella. These entries should go individually in the AUTHORS file, for consistancy.
2009-02-28tag: moved APE code to tag_ape.cMax Kellermann1-0/+145
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-28 04:48:42 +0000