]> git.kaiwu.me - nginx.git/commit
projects / nginx.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f08dbef) | patch
Mp4: fixed potential overflow in ngx_http_mp4_crop_stts_data().
authorMaxim Dounin <mdounin@mdounin.ru>
Tue, 7 Jun 2022 18:58:52 +0000 (21:58 +0300)
committerMaxim Dounin <mdounin@mdounin.ru>
Tue, 7 Jun 2022 18:58:52 +0000 (21:58 +0300)
commit80fc2ddf57558ec43b94220ce2d3d88e2e470c75
treec7312f07d2d6fe3e055dfd815e1f61f68843dc7ftree | snapshot
parentf08dbefadf083b8546423e35d8d12ba27e46efa8commit | diff
Mp4: fixed potential overflow in ngx_http_mp4_crop_stts_data().

Both "count" and "duration" variables are 32-bit, so their product might
potentially overflow.  It is used to reduce 64-bit start_time variable,
and with very large start_time this can result in incorrect seeking.

Found by Coverity (CID 1499904).
src/http/modules/ngx_http_mp4_module.c diff | blob | history
nginx upstream