libvorbis/libvorbis-r14604-CVE-2008-1423.diff

Index: /trunk/vorbis/lib/codebook.c
===================================================================
--- /trunk/vorbis/lib/codebook.c (revision 14602)
+++ /trunk/vorbis/lib/codebook.c (revision 14604)
@@ -159,4 +159,6 @@
   s->entries=oggpack_read(opb,24);
   if(s->entries==-1)goto _eofout;
+
+  if(_ilog(s->dim)+_ilog(s->entries)>24)goto _eofout;
 
   /* codeword ordering.... length ordered or unordered? */
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libvorbis?expand=0&rev=9 2008-06-03 16:25:47 +02:00			`Index: /trunk/vorbis/lib/codebook.c`
			`===================================================================`
			`--- /trunk/vorbis/lib/codebook.c (revision 14602)`
			`+++ /trunk/vorbis/lib/codebook.c (revision 14604)`
			`@@ -159,4 +159,6 @@`
			`s->entries=oggpack_read(opb,24);`
			`if(s->entries==-1)goto _eofout;`
			`+`
			`+ if(_ilog(s->dim)+_ilog(s->entries)>24)goto _eofout;`

			`/* codeword ordering.... length ordered or unordered? */`