File CVE-2024-47544.patch of Package gstreamer-plugins-good.39304

From 4a0e8bf92bdb28845e555654135fcf75173d11b3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sebastian=20Dr=C3=B6ge?= <sebastian@centricular.com>
Date: Fri, 27 Sep 2024 09:47:50 +0300
Subject: [PATCH 08/12] qtdemux: Fix error handling when parsing cenc sample
 groups fails

Thanks to Antonio Morales for finding and reporting the issue.

Fixes GHSL-2024-238, GHSL-2024-239, GHSL-2024-240
Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/3846

Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059>
---
diff -urp gst-plugins-good-1.8.3.orig/gst/isomp4/qtdemux.c gst-plugins-good-1.8.3/gst/isomp4/qtdemux.c
--- gst-plugins-good-1.8.3.orig/gst/isomp4/qtdemux.c	2025-01-02 14:45:10.772120660 -0600
+++ gst-plugins-good-1.8.3/gst/isomp4/qtdemux.c	2025-01-02 15:52:08.392913400 -0600
@@ -9066,8 +9066,10 @@ qtdemux_parse_trak (GstQTDemux * qtdemux
   if (fourcc == FOURCC_encv || fourcc == FOURCC_enca) {
     GNode *enc = qtdemux_tree_get_child_by_type (stsd, fourcc);
     stream->protected = TRUE;
-    if (!qtdemux_parse_protection_scheme_info (qtdemux, stream, enc, &fourcc))
+    if (!qtdemux_parse_protection_scheme_info (qtdemux, stream, enc, &fourcc)) {
       GST_ERROR_OBJECT (qtdemux, "Failed to parse protection scheme info");
+      goto corrupt_file;
+    }
   }
 
   if (stream->subtype == FOURCC_vide) {
Places

File CVE-2024-47544.patch of Package gstreamer-plugins-good.39304

Places
