From 5ffe27f03738c833fdd91ea8141f86142d602295 Mon Sep 17 00:00:00 2001
From: Sai Asish Y <say.apm35@gmail.com>
Date: Tue, 9 Jun 2026 15:57:36 -0700
Subject: [PATCH] Add bounds check in Tags::fetchTrack to prevent heap buffer
 overflow

Signed-off-by: Sai Asish Y <say.apm35@gmail.com>
---
 src/itmf/Tags.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/itmf/Tags.cpp b/src/itmf/Tags.cpp
index e8ca481..cdf01aa 100644
--- a/src/itmf/Tags.cpp
+++ b/src/itmf/Tags.cpp
@@ -471,7 +471,7 @@ Tags::fetchTrack( const CodeItemMap& cim, MP4TagTrack& cpp, const MP4TagTrack*&
 
     MP4ItmfData& data = f->second->dataList.elements[0];
 
-    if( NULL == data.value )
+    if( NULL == data.value || data.valueSize < 6 )
         return;
 
     cpp.index = (uint16_t(data.value[2]) <<  8)