targa: prevent integer overflow in bufsize check.
authorRonald S. Bultje <rsbultje@gmail.com>
Mon, 21 Feb 2011 18:44:37 +0000 (13:44 -0500)
committerRonald S. Bultje <rsbultje@gmail.com>
Mon, 21 Feb 2011 18:44:37 +0000 (13:44 -0500)
libavcodec/targa.c

index 0892b6f..3c220f4 100644 (file)
@@ -34,7 +34,7 @@ typedef struct TargaContext {
 } TargaContext;
 
 #define CHECK_BUFFER_SIZE(buf, buf_end, needed, where) \
-    if(buf + needed > buf_end){ \
+    if(needed > buf_end - buf){ \
         av_log(avctx, AV_LOG_ERROR, "Problem: unexpected end of data while reading " where "\n"); \
         return -1; \
     } \