Package: timidity / 2.14.0-8

0013-readmidi-Fix-division-by-zero.patch Patch series | download
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
From 2386ec2c745f6c5075e53ea051da211336b44b84 Mon Sep 17 00:00:00 2001
From: Takashi Iwai <tiwai@suse.de>
Date: Tue, 26 Jun 2018 22:31:27 +0200
Subject: readmidi: Fix division by zero

References: CVE-2017-11546

An adhoc fix for division by zero in insert_note_steps().

Signed-off-by: Takashi Iwai <tiwai@suse.de>
bug-debian: https://bugs.debian.org/870338
bug-suse: https://bugzilla.suse.com/show_bug.cgi?id=1081694
bug: https://bugzilla.suse.com/show_bug.cgi?id=1081694
origin: https://bugzilla.suse.com/attachment.cgi?id=760825
---
 timidity/readmidi.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/timidity/readmidi.c b/timidity/readmidi.c
index 158388a..341777e 100644
--- a/timidity/readmidi.c
+++ b/timidity/readmidi.c
@@ -4585,6 +4585,8 @@ static void insert_note_steps(void)
 			if (beat != 0)
 				meas++, beat = 0;
 			num = timesig[n].a, denom = timesig[n].b, n++;
+			if (!denom)
+				denom = 1;
 		}
 		a = (meas + 1) & 0xff;
 		b = (((meas + 1) >> 8) & 0x0f) + ((beat + 1) << 4);