Cardinal icon indicating copy to clipboard operation
Cardinal copied to clipboard
verified publisher icon DISTRHO

Fix potential vulnerable cloned function

Open npt-1707 opened this issue 7 months ago • 0 comments

Hi Development Team,

I identified a potential vulnerability in a clone function undefer_input() in deps/unzipfx/fileio.c sourced from madler/unzip. This issue, originally reported in CVE-2019-13232, was resolved in the repository via this commit https://github.com/madler/unzip/commit/41beb477c5744bc396fa1162ee0c14218ec12213.

This PR applies the corresponding patch to fix the vulnerability in this codebase.

Please review at your convenience. Thank you!

npt-1707 avatar May 21 '25 21:05 npt-1707