Missed you on #swfdec, so I'll throw you this mail instead. Please be
critical to these patches as it's way to late for me to write code and I
haven't really double-checked they are correct as my brain went to sleep
hours ago, but they seem to work in my minimal testing. ;)
Ran into this use-after-free...
http://www.fatal.se/tmp/swf/swfdec-use-after-free.diff (attached).
While looking at misparsing of variables in the url...
Maybe this one is not ok, but the current code is too strict (and fails
on sites like http://www.kanal5.se flash in upper right corner, and
others):
http://www.fatal.se/tmp/swf/swfdec-nonstrict-variable-parsing.diff
(attached).
(... and can't the url formdata encoded string be UTF-8? the urldecode
helpers can't handle utf-8 if I read them correctly.)
Have a nice weekend!
--
Regards,
Andreas Henriksson
-------------- next part --------------
A non-text attachment was scrubbed...
Name: swfdec-use-after-free.diff
Type: text/x-patch
Size: 664 bytes
Desc: not available
Url :
http://lists.freedesktop.org/archives/swfdec/attachments/20071103/d37b431a/attachment.bin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: swfdec-nonstrict-variable-parsing.diff
Type: text/x-patch
Size: 1800 bytes
Desc: not available
Url :
http://lists.freedesktop.org/archives/swfdec/attachments/20071103/d37b431a/attachment-0001.bin