cuetools icon indicating copy to clipboard operation
cuetools copied to clipboard
verified publisher icon svend

Fix buffer overflow in src/lib/time.c time_frame_to_mmssff

Open Cycloctane opened this issue 2 months ago • 1 comments

time_frame_to_mmssff function in src/lib/time.c has buffer overflow issue. This pr adds range checks to make mm:ss:ff fit in 8 chars. Also replaces sprintf with snprintf.

Reproduce: cueconvert crashes when parsing below file:

FILE "COCC-18150.wav" WAVE
  TRACK 01 AUDIO
    INDEX 01 11111111:00:00

Cycloctane avatar Sep 28 '25 19:09 Cycloctane

@svend Have a look ? :)

Cycloctane avatar Nov 16 '25 20:11 Cycloctane