Hi, On Tue, Jan 24, 2012 at 9:20 AM, Janne Grunau <janne-li...@jannau.net> wrote: > On 2012-01-24 07:20:10 +0800, Ronald S. Bultje wrote: >> >> On Tue, Jan 24, 2012 at 5:00 AM, Janne Grunau <janne-li...@jannau.net> wrote: >> > Found by John Villamil <jo...@matasano.com> in fuzzed rv20 in mkv files. >> > --- >> > libavcodec/rv10.c | 10 ++++++++-- >> > 1 files changed, 8 insertions(+), 2 deletions(-) >> [..] >> > + if (offset > buf_size) >> > + return AVERROR_INVALIDDATA; >> >> Shouldn't that be >=? Same for the other. > > actually not for the other since for the last two slices > offset + size2 == buf_size is true
You're correct, this patch is OK. Ronald _______________________________________________ libav-devel mailing list libav-devel@libav.org https://lists.libav.org/mailman/listinfo/libav-devel
