vlc/vlc-2.2 | branch: master | Rémi Denis-Courmont <[email protected]> | Sat Nov 15 12:49:22 2014 +0200| [da9a1a295ccbc1755b98496854cafcbaeb0c8489] | committer: Rémi Denis-Courmont
SRTP: integer overflow (cherry picked from commit e76f990e0ba00a9f573c23627ecd66cb9ae9bdd5) > http://git.videolan.org/gitweb.cgi/vlc/vlc-2.2.git/?a=commit;h=da9a1a295ccbc1755b98496854cafcbaeb0c8489 --- modules/access/rtp/srtp.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/modules/access/rtp/srtp.c b/modules/access/rtp/srtp.c index 9447f34..883e553 100644 --- a/modules/access/rtp/srtp.c +++ b/modules/access/rtp/srtp.c @@ -738,7 +738,7 @@ static int srtcp_crypt (srtp_session_t *s, uint8_t *buf, size_t len) { /* Packet in the future, good */ s->rtcp.window = s->rtcp.window << diff; - s->rtcp.window |= 1; + s->rtcp.window |= UINT64_C(1); s->rtcp_index = index; } else @@ -747,7 +747,7 @@ static int srtcp_crypt (srtp_session_t *s, uint8_t *buf, size_t len) diff = -diff; if ((diff >= 64) || ((s->rtcp.window >> diff) & 1)) return EACCES; // replay attack! - s->rtp.window |= 1 << diff; + s->rtp.window |= UINT64_C(1) << diff; } /* Crypts SRTCP */ _______________________________________________ vlc-commits mailing list [email protected] https://mailman.videolan.org/listinfo/vlc-commits
