Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix CVE-2024-23709 #25

Merged
merged 1 commit into from
Oct 5, 2024
Merged

Fix CVE-2024-23709 #25

merged 1 commit into from
Oct 5, 2024

Commits on Oct 1, 2024

  1. fix buffer overrun in eas_wtengine

    avoid a buffer overrun in eas_wtengine.
    Check buffer limits during application of gain
    Clip calculated length in eas_wtsynth
    
    Bug: 317780080
    Test: POC with bug
    (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:6b66e7665dbcd891ff23081c13ab0b1637bb1dda)
    Merged-In: I3609d6a36d89b26ae7eb3ae84cbe7772f6c3bee0
    Change-Id: I3609d6a36d89b26ae7eb3ae84cbe7772f6c3bee0
    backporting fix from main
    rbessick4 authored and rsp4jack committed Oct 1, 2024
    Configuration menu
    Copy the full SHA
    736d72e View commit details
    Browse the repository at this point in the history