avcodec/av1_parse: Check obu_size

Fixes: out of array read Fixes: SIGSEGV_get_obu_bit_length_av1_parse Found-by: keval shah <skeval65@gmail.com> Reviewed-by: James Almer <jamrial@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
2018-10-14 12:40:38 +02:00
parent f099946faf
commit c27c7b49dc
1 changed files with 2 additions and 2 deletions
--- a/libavcodec/av1_parse.h
+++ b/libavcodec/av1_parse.h
@@ -134,8 +134,8 @@ static inline int parse_obu_header(const uint8_t *buf, int buf_size,
    size = *obu_size + *start_pos;
-    if (size > INT_MAX)
+    if (size > buf_size)
-        return AVERROR(ERANGE);
+        return AVERROR_INVALIDDATA;
    return size;
 }