[Ffmpeg-devel] [PATCH] Fix buffer overflows in vorbis.c

Oded Shimon ods15
Sun Apr 23 22:44:41 CEST 2006


On Fri, Apr 21, 2006 at 05:20:40PM +0300, Uoti Urpala wrote:
> +    if (bl0>13 || bl0<6 || bl1>13 || bl1<6 || bl1<bl0) {

Roberto asked me about this - Vorbis spec specifies that blocksize1 must 
always be the bigger (or equal) blocksize. if bl1 is smaller than bl0, 
then the file is damaged/whatever.

Patch is good...

- ods15





More information about the ffmpeg-devel mailing list