From aa05396a01d05a5bc35dd2459f0599eacf0c4f7b Mon Sep 17 00:00:00 2001
From: TAMUKI Shoichi <tamuki@linet.gr.jp>
Date: Wed, 29 Aug 2018 08:32:52 +0900
Subject: [PATCH] Fix for CVE-2017-11546

Avoid divide-by-zero error when received invalid time signature meta
event during playing.

Signed-off-by: TAMUKI Shoichi <tamuki@linet.gr.jp>
---
 timidity/readmidi.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/timidity/readmidi.c b/timidity/readmidi.c
index 2e3ef875..06e19f54 100644
--- a/timidity/readmidi.c
+++ b/timidity/readmidi.c
@@ -3350,7 +3350,7 @@ static void smf_time_signature(int32 at, struct timidity_file *tf, int len)
     c = tf_getc(tf);
     b = tf_getc(tf);
 
-    if(n == 0 || d == 0)
+    if(n == 0 || (uint8) d == 0)
     {
 	ctl->cmsg(CMSG_WARNING, VERB_VERBOSE, "Invalid time signature");
 	return;
-- 
GitLab