matroskadec: Fix buffer overread in matroska_ebmlnum_uint

Based on a Chromium patch git-svn-id: file:///var/local/repositories/ffmpeg/trunk@23168 9553f0bf-9b14-0410-a0b8-cfaf0461ba5b

matroskadec: Fix buffer overread in matroska_ebmlnum_uint
Based on a Chromium patch git-svn-id: file:///var/local/repositories/ffmpeg/trunk@23168 9553f0bf-9b14-0410-a0b8-cfaf0461ba5b
43d9c147 · conrad · 000247a6 · 43d9c147
Commit 43d9c147 authored May 18, 2010 by conrad
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

libavformat/matroskadec.c libavformat/matroskadec.c +1 -1

No files found.
--- a/libavformat/matroskadec.c
+++ b/libavformat/matroskadec.c
@@ -679,7 +679,7 @@ static int matroska_ebmlnum_uint(MatroskaDemuxContext *matroska,
 {
    ByteIOContext pb;
    init_put_byte(&pb, data, size, 0, NULL, NULL, NULL, NULL);
-    return ebml_read_num(matroska, &pb, 8, num);
+    return ebml_read_num(matroska, &pb, FFMIN(size, 8), num);
 }
 /*