fix exploitable buffer overflow

git-svn-id: file:///var/local/repositories/ffmpeg/trunk@8850 9553f0bf-9b14-0410-a0b8-cfaf0461ba5b

fix exploitable buffer overflow
git-svn-id: file:///var/local/repositories/ffmpeg/trunk@8850 9553f0bf-9b14-0410-a0b8-cfaf0461ba5b
ebdb418b · michael · 606d176e · ebdb418b
Commit ebdb418b authored Apr 27, 2007 by michael
Show whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

libavcodec/dca.c libavcodec/dca.c +3 -0

No files found.
--- a/libavcodec/dca.c
+++ b/libavcodec/dca.c
@@ -1089,6 +1089,9 @@ static int dca_convert_bitstream(uint8_t * src, int src_size, uint8_t * dst,
    uint16_t *ssrc = (uint16_t *) src, *sdst = (uint16_t *) dst;
    PutBitContext pb;

+    if((unsigned)src_size > (unsigned)max_size)
+        return -1;
+
    mrk = AV_RB32(src);
    switch (mrk) {
    case DCA_MARKER_RAW_BE: