[FFmpeg-cvslog] avcodec/bmp: fix integer overflow in checking header sizes
Michael Niedermayer
git at videolan.org
Fri Jul 4 15:29:25 CEST 2014
ffmpeg | branch: master | Michael Niedermayer <michaelni at gmx.at> | Fri Jul 4 14:37:01 2014 +0200| [bd8b6ed96df58bf3ea22c987f461728543219979] | committer: Michael Niedermayer
avcodec/bmp: fix integer overflow in checking header sizes
Signed-off-by: Michael Niedermayer <michaelni at gmx.at>
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bd8b6ed96df58bf3ea22c987f461728543219979
---
libavcodec/bmp.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/libavcodec/bmp.c b/libavcodec/bmp.c
index 47ff978..7443fa9 100644
--- a/libavcodec/bmp.c
+++ b/libavcodec/bmp.c
@@ -70,7 +70,7 @@ static int bmp_decode_frame(AVCodecContext *avctx,
hsize = bytestream_get_le32(&buf); /* header size */
ihsize = bytestream_get_le32(&buf); /* more header size */
- if (ihsize + 14 > hsize) {
+ if (ihsize + 14LL > hsize) {
av_log(avctx, AV_LOG_ERROR, "invalid header size %u\n", hsize);
return AVERROR_INVALIDDATA;
}
More information about the ffmpeg-cvslog
mailing list