> > Yes technically it can theoritically overflow with an very malformed
> > AVI (i.e.
> > more malformed that the ones trigerring VideoLAN-SA-0901)
> > However on my simple test (attached) it doesn't wrap up to a negative
> > value but
> > produce a large integer. I'm not sure if we can rely on that "feature"
> > of
> > the compiler.
> It can't wrap to a negative value as it is promoted to unsigned. But it
> wrap to something which is < sizeof(str) I think. No proper fix for an
> overflow in my opinion.
After a lapse of 5 months I'm coming back with a fix.
you can find a diff.gz at
(and .dsc, debdiff and .debs)
or in the git repo, branch lenny :
pkg-multimedia-maintainers mailing list