From d8bfdd3c84c29c9480daaa10d49904e58d65abd5 Mon Sep 17 00:00:00 2001
From: Daniel Kang <daniel.d.kang@gmail.com>
Date: Sun, 2 Jan 2011 16:45:25 -0500
Subject: [PATCH] Check for overflow (i.e. headers too large).

---
 libavcodec/wmv2dec.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/libavcodec/wmv2dec.c b/libavcodec/wmv2dec.c
index c83f898..bc3cc66 100644
--- a/libavcodec/wmv2dec.c
+++ b/libavcodec/wmv2dec.c
@@ -85,7 +85,7 @@ static int decode_ext_header(Wmv2Context *w){
     int fps;
     int code;

-    if(s->avctx->extradata_size<4) return -1;
+    if(s->avctx->extradata_size*8<4) return -1;

     init_get_bits(&gb, s->avctx->extradata, s->avctx->extradata_size*8);

--
1.7.2.2