qdm2: check that coding_method is valid before using it.

Fixes out of array reads. Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at>

qdm2: check that coding_method is valid before using it.
Fixes out of array reads. Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
5ee008e0 · Michael Niedermayer · 909a18f7 · 5ee008e0
Commit 5ee008e0 authored Nov 09, 2012 by Michael Niedermayer
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

qdm2.c libavcodec/qdm2.c +5 -0

No files found.
--- a/libavcodec/qdm2.c
+++ b/libavcodec/qdm2.c
@@ -795,6 +795,11 @@ static int synthfilt_build_sb_samples (QDM2Context *q, GetBitContext *gb, int le
                for (j = 0; j < 16; j++)
                    sign_bits[j] = get_bits1 (gb);

+            if (q->coding_method[0][sb][0] <= 0) {
+                av_log(NULL, AV_LOG_ERROR, "coding method invalid\n");
+                return AVERROR_INVALIDDATA;
+            }
+
            for (j = 0; j < 64; j++)
                if (q->coding_method[1][sb][j] > q->coding_method[0][sb][j])
                    q->coding_method[0][sb][j] = q->coding_method[1][sb][j];