diff options
author | Wonsik Kim <wonsik@google.com> | 2017-09-07 16:17:05 -0700 |
---|---|---|
committer | Ivan Kutepov <its.kutepov@gmail.com> | 2017-12-09 19:01:45 +0300 |
commit | 6a3ab746c5365737f0cfec231d10131d680c40f7 (patch) | |
tree | d2f2db33d4fd0d14641fa251c55f58f3cef68360 | |
parent | 52d6c34651fbfc4f937b2980c5e12b89cf99ef6c (diff) | |
download | frameworks_av-6a3ab746c5365737f0cfec231d10131d680c40f7.tar.gz frameworks_av-6a3ab746c5365737f0cfec231d10131d680c40f7.tar.bz2 frameworks_av-6a3ab746c5365737f0cfec231d10131d680c40f7.zip |
m4v_h263: fix global buffer overflow
Bug: 65025028
Test: run POC
Change-Id: Ifa5cf0e3ced7188ed70849b04b57828518ccb5bf
CVE-2017-0879
-rw-r--r-- | media/libstagefright/codecs/m4v_h263/dec/src/vlc_decode.cpp | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/media/libstagefright/codecs/m4v_h263/dec/src/vlc_decode.cpp b/media/libstagefright/codecs/m4v_h263/dec/src/vlc_decode.cpp index f7192b1c0f..7202f982eb 100644 --- a/media/libstagefright/codecs/m4v_h263/dec/src/vlc_decode.cpp +++ b/media/libstagefright/codecs/m4v_h263/dec/src/vlc_decode.cpp @@ -560,7 +560,7 @@ int PV_VlcDecMCBPC_com_inter_H263(BitstreamDecVideo *stream) BitstreamShow13Bits(stream, &code); - if (code == 0) + if (code < 8) { return VLC_CODE_ERROR; } |