From b000b4991e0d3ae033cc8d34cad30df667475c6b Mon Sep 17 00:00:00 2001
From: orbisai0security <mediratta01.pally@gmail.com>
Date: Fri, 17 Apr 2026 11:28:40 +0000
Subject: [PATCH] fix: V-002 security vulnerability

Automated security fix generated by Orbis Security AI
---
 bindings/ruby/test/jfk_reader/jfk_reader.c | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/bindings/ruby/test/jfk_reader/jfk_reader.c b/bindings/ruby/test/jfk_reader/jfk_reader.c
index 6657176e..dfb87dac 100644
--- a/bindings/ruby/test/jfk_reader/jfk_reader.c
+++ b/bindings/ruby/test/jfk_reader/jfk_reader.c
@@ -15,8 +15,15 @@ jfk_reader_get_memory_view(const VALUE obj, rb_memory_view_t *view, int flags)
   VALUE audio_path = rb_iv_get(obj, "audio_path");
   const char *audio_path_str = StringValueCStr(audio_path);
   const int n_samples = 176000;
-  float *data = (float *)malloc(n_samples * sizeof(float));
-  short *samples = (short *)malloc(n_samples * sizeof(short));
+  float *data = (float *)calloc((size_t)n_samples, sizeof(float));
+  if (data == NULL) {
+    return false;
+  }
+  short *samples = (short *)calloc((size_t)n_samples, sizeof(short));
+  if (samples == NULL) {
+    free(data);
+    return false;
+  }
   FILE *file = fopen(audio_path_str, "rb");
 
   fseek(file, 78, SEEK_SET);