From: Reinhard Tartler <siretart@tauware.de>
Date: Sat, 4 Mar 2023 18:04:09 +0000 (-0500)
Subject: fix Null Pointer dereference CVE-2022-36186
X-Git-Tag: archive/raspbian/2.0.0+dfsg1-4+rpi1^2~27
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=470f369d068d17ac1866fc81b5f4e26f0e1ad599;p=gpac.git

fix Null Pointer dereference CVE-2022-36186
---

diff --git a/debian/patches/CVE-2022-36186.patch b/debian/patches/CVE-2022-36186.patch
new file mode 100644
index 0000000..c560798
--- /dev/null
+++ b/debian/patches/CVE-2022-36186.patch
@@ -0,0 +1,21 @@
+commit b43f9d1a4b4e33d08edaef6d313e6ce4bdf554d3
+Author: jeanlf <jeanlf@gpac.io>
+Date:   Tue Jul 12 19:13:03 2022 +0200
+
+    fixed #2223
+
+Index: gpac/src/filters/reframe_nalu.c
+===================================================================
+--- gpac.orig/src/filters/reframe_nalu.c
++++ gpac/src/filters/reframe_nalu.c
+@@ -1507,7 +1507,9 @@ static void naludmx_update_clli_mdcv(GF_
+ static void naludmx_set_dolby_vision(GF_NALUDmxCtx *ctx)
+ {
+ 	u8 dv_cfg[24];
+-
++	if (!ctx->opid)
++		return;
++		
+ 	switch (ctx->dv_mode) {
+ 	case DVMODE_NONE:
+ 	case DVMODE_CLEAN: