allocation-size-too-big at sfcommands/sfconvert.c:327

[yangzao]

Hi, I found an allocation-size-too-big bug when testing sfconvert 0.3.6 on x86-64 Ubuntu 22.04.

Input file:

3.zip

Commandline:

./sfconvert ./3 /tmp/out.mp3 format aiff

Crash line:

    "    326    	const int kBufferFrameCount = 65536;",
    "--->327	    void *buffer = malloc(kBufferFrameCount * frameSize);",

Stacktrace:

    "    #0 0x55555560b38e in malloc (sfconvert_asan+0xb738e) (BuildId: 9869ebe94503d2fad14fc1ee26e5198c619db21a)",
    "    #1 0x555555646df5 in copyaudiodata sfcommands/sfconvert.c:327:17",
    "    #2 0x555555646444 in main sfcommands/sfconvert.c:248:17",