On Wed, Sep 11, 2013 at 11:47:53PM +0300, Martin Storsjö wrote: > Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind > CC: [email protected] > --- > libavcodec/shorten.c | 4 ++++ > 1 file changed, 4 insertions(+) > > diff --git a/libavcodec/shorten.c b/libavcodec/shorten.c > index 130bde6..c394c52 100644 > --- a/libavcodec/shorten.c > +++ b/libavcodec/shorten.c > @@ -221,6 +221,10 @@ static int decode_wave_header(AVCodecContext *avctx, > const uint8_t *header, > while (bytestream2_get_le32(&gb) != MKTAG('f', 'm', 't', ' ')) { > len = bytestream2_get_le32(&gb); > bytestream2_skip(&gb, len); > + if (bytestream2_get_bytes_left(&gb) < 16) { > + av_log(avctx, AV_LOG_ERROR, "no fmt chunk found\n"); > + return AVERROR_INVALIDDATA; > + } > } > len = bytestream2_get_le32(&gb); > > --
looks OK _______________________________________________ libav-devel mailing list [email protected] https://lists.libav.org/mailman/listinfo/libav-devel
