Author: superdump
Date: Wed Jun 18 16:46:38 2008
New Revision: 2478
Log:
Avoid exploit by checking array indexes
Modified:
aac/aac.c
Modified: aac/aac.c
==============================================================================
--- aac/aac.c (original)
+++ aac/aac.c Wed Jun 18 16:46:38 2008
@@ -1524,7 +1524,7 @@ static int excluded_channels(AACContext
for (i = 0; i < 7; i++)
ac->che_drc.exclude_mask[i] = get_bits1(gb);
- while (get_bits1(gb)) {
+ while (n <= MAX_CHANNELS && num_excl_chan < MAX_CHANNELS - 7 &&
get_bits1(gb)) {
ac->che_drc.additional_excluded_chns[n-1]=1;
for (i = num_excl_chan; i < num_excl_chan+7; i++)
ac->che_drc.exclude_mask[i] = get_bits1(gb);
_______________________________________________
FFmpeg-soc mailing list
[email protected]
https://lists.mplayerhq.hu/mailman/listinfo/ffmpeg-soc
