File CVE-2024-47530.patch of Package gstreamer-plugins-good.36927

From c0dceda8e969f74f2326539c1f0368c2fd7afcd7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sebastian=20Dr=C3=B6ge?= <sebastian@centricular.com>
Date: Mon, 30 Sep 2024 16:32:48 +0300
Subject: [PATCH 1/7] matroskademux: Only unmap GstMapInfo in WavPack header
 extraction error paths if previously mapped

Thanks to Antonio Morales for finding and reporting the issue.

Fixes GHSL-2024-197
Fixes https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/3863

Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8057>
---
diff -urp gst-plugins-good-1.24.7.orig/gst/matroska/matroska-demux.c gst-plugins-good-1.24.7/gst/matroska/matroska-demux.c
--- gst-plugins-good-1.24.7.orig/gst/matroska/matroska-demux.c	2024-08-21 07:25:15.000000000 -0400
+++ gst-plugins-good-1.24.7/gst/matroska/matroska-demux.c	2024-12-16 03:34:51.980663122 -0500
@@ -3891,7 +3891,6 @@ gst_matroska_demux_add_wvpk_header (GstE
   GstMatroskaTrackAudioContext *audiocontext =
       (GstMatroskaTrackAudioContext *) stream;
   GstBuffer *newbuf = NULL;
-  GstMapInfo map, outmap;
   guint8 *buf_data, *data;
   Wavpack4Header wvh;
 
@@ -3908,11 +3907,11 @@ gst_matroska_demux_add_wvpk_header (GstE
 
   if (audiocontext->channels <= 2) {
     guint32 block_samples, tmp;
+    GstMapInfo outmap;
     gsize size = gst_buffer_get_size (*buf);
 
     if (size < 4) {
       GST_ERROR_OBJECT (element, "Too small wavpack buffer");
-      gst_buffer_unmap (*buf, &map);
       return GST_FLOW_ERROR;
     }
 
@@ -3950,6 +3949,7 @@ gst_matroska_demux_add_wvpk_header (GstE
     *buf = newbuf;
     audiocontext->wvpk_block_index += block_samples;
   } else {
+    GstMapInfo map, outmap;
     guint8 *outdata = NULL;
     gsize buf_size, size;
     guint32 block_samples, flags, crc;