From 8a1eac1c7e16bea4e42b7579dde11f4ee4505a9f Mon Sep 17 00:00:00 2001
From: Daniel Kang <daniel.d.kang@gmail.com>
Date: Sun, 2 Jan 2011 16:45:25 -0500
Subject: [PATCH] Check for overflow (i.e. headers too large).

---
 libavcodec/wmv2dec.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/libavcodec/wmv2dec.c b/libavcodec/wmv2dec.c
index c83f898..d710d1a 100644
--- a/libavcodec/wmv2dec.c
+++ b/libavcodec/wmv2dec.c
@@ -85,7 +85,7 @@ static int decode_ext_header(Wmv2Context *w){
     int fps;
     int code;

-    if(s->avctx->extradata_size<4) return -1;
+    if(s->avctx->extradata_size*8<32) return -1;

     init_get_bits(&gb, s->avctx->extradata, s->avctx->extradata_size*8);

--
1.7.2.2