On 2012-01-24 07:20:10 +0800, Ronald S. Bultje wrote: > Hi, > > On Tue, Jan 24, 2012 at 5:00 AM, Janne Grunau <[email protected]> wrote: > > Found by John Villamil <[email protected]> in fuzzed rv20 in mkv files. > > --- > > libavcodec/rv10.c | 10 ++++++++-- > > 1 files changed, 8 insertions(+), 2 deletions(-) > [..] > > + if (offset > buf_size) > > + return AVERROR_INVALIDDATA; > > Shouldn't that be >=? Same for the other.
I think both are equally safe and pointless, slices of size 1 are just as invalid as slices of size 0. Will push with >= Janne _______________________________________________ libav-devel mailing list [email protected] https://lists.libav.org/mailman/listinfo/libav-devel
