avcodec/iff: decode_delta_j: Check that the number of bytes that will be read are available

This should avoid long loops related to CID1361958 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

avcodec/iff: decode_delta_j: Check that the number of bytes that will be read are available
This should avoid long loops related to CID1361958 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
fcdbbbd8 · Michael Niedermayer · 3f5b7a2d · fcdbbbd8
Commit fcdbbbd8 authored Jul 06, 2016 by Michael Niedermayer
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

iff.c libavcodec/iff.c +2 -2

No files found.
--- a/libavcodec/iff.c
+++ b/libavcodec/iff.c
@@ -865,7 +865,7 @@ static void decode_delta_j(uint8_t *dst,
            for (g = 0; g < groups; g++) {
                offset = bytestream2_get_be16(&gb);
-                if (bytestream2_get_bytes_left(&gb) < 1)
+                if (cols * bpp == 0 || bytestream2_get_bytes_left(&gb) < cols * bpp)
                    return;
                if (kludge_j)
@@ -911,7 +911,7 @@ static void decode_delta_j(uint8_t *dst,
                    for (d = 0; d < bpp; d++) {
                        unsigned noffset = offset + (r * pitch) + d * planepitch;
-                        if (bytestream2_get_bytes_left(&gb) < 1)
+                        if (!bytes || bytestream2_get_bytes_left(&gb) < bytes)
                            return;
                        for (b = 0; b < bytes; b++) {