On Thu, Oct 24, 2019 at 3:36 AM <[email protected]> wrote: > From: Limin Wang <[email protected]> > > Before header_str is initialized, the code is possible to goto end and > free the > header_str and cause invalid access. > > Signed-off-by: Limin Wang <[email protected]> > --- > libavformat/mpeg.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/libavformat/mpeg.c b/libavformat/mpeg.c > index c33401f1a0..ebc064931a 100644 > --- a/libavformat/mpeg.c > +++ b/libavformat/mpeg.c > @@ -720,7 +720,7 @@ static int vobsub_read_header(AVFormatContext *s) > int i, ret = 0, header_parsed = 0, langidx = 0; > MpegDemuxContext *vobsub = s->priv_data; > size_t fname_len; > - char *header_str; > + char *header_str = NULL; > AVBPrint header; > int64_t delay = 0; > AVStream *st = NULL; > -- > 2.21.0 > > Posted a patch for this two days ago: https://ffmpeg.org/pipermail/ffmpeg-devel/2019-October/251957.html
- Andreas _______________________________________________ ffmpeg-devel mailing list [email protected] https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email [email protected] with subject "unsubscribe".
