RepoMirrors/ffmpeg
1
0
Fork 0
mirror of https://git.ffmpeg.org/ffmpeg.git synced 2024-12-11 17:55:21 +00:00
Code Issues Projects Releases Wiki Activity

Heap buffer overflow.

Browse Source 
Originally committed as revision 13051 to svn://svn.ffmpeg.org/ffmpeg/trunk
This commit is contained in:
Michael Niedermayer 2008-05-03 21:01:47 +00:00
parent 83e9a67d7c
commit 494e353179
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
libavcodec/alac.c
View File

@ -405,7 +405,7 @@ static int alac_decode_frame(AVCodecContext *avctx,
ALACContext *alac = avctx->priv_data;
int channels;
int32_t outputsamples;
unsigned int outputsamples;
int hassize;
int readsamplesize;
int wasted_bytes;
@ -458,6 +458,10 @@ static int alac_decode_frame(AVCodecContext *avctx,
if (hassize) {
/* now read the number of samples as a 32bit integer */
outputsamples = get_bits(&alac->gb, 32);
if(outputsamples > alac->setinfo_max_samples_per_frame){
av_log(avctx, AV_LOG_ERROR, "outputsamples %d > %d\n", outputsamples, alac->setinfo_max_samples_per_frame);
return -1;
}
} else
outputsamples = alac->setinfo_max_samples_per_frame;