Overview

File libcue-CVE-2023-43641.patch of Package libcue.30910

diff -urp libcue-2.1.0.orig/cd.c libcue-2.1.0/cd.c
--- libcue-2.1.0.orig/cd.c	2016-04-15 00:31:27.000000000 -0500
+++ libcue-2.1.0/cd.c	2023-10-02 16:37:51.637765713 -0500
@@ -339,7 +339,7 @@ track_get_rem(const Track* track)
 
 void track_set_index(Track *track, int i, long ind)
 {
-	if (i >= MAXTRACK) {
+	if (i < 0 || i >= MAXTRACK) {
 		fprintf(stderr, "too many indexes\n");
                 return;
         }
openSUSE Build Service is sponsored by
Places