From 9783831e37ca5718e20259be70c23e229d3583c4 Mon Sep 17 00:00:00 2001 From: Mattias Andrée Date: Sat, 14 Jan 2017 10:05:50 +0100 Subject: Fix offset bug in blind-reverse and add example MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Mattias Andrée --- src/blind-reverse.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) (limited to 'src') diff --git a/src/blind-reverse.c b/src/blind-reverse.c index b6e456a..619a490 100644 --- a/src/blind-reverse.c +++ b/src/blind-reverse.c @@ -26,12 +26,14 @@ main(int argc, char *argv[]) frame_size = stream.width * stream.height * stream.pixel_size; if (stream.frames > SSIZE_MAX / frame_size) eprintf("%s: video is too large\n", stream.file); + if (stream.frames * frame_size > SSIZE_MAX - stream.headlen) + eprintf("%s: video is too large\n", stream.file); #if defined(POSIX_FADV_RANDOM) posix_fadvise(stream.fd, 0, 0, POSIX_FADV_RANDOM); #endif while (stream.frames--) { - ptr = stream.frames * frame_size; + ptr = stream.frames * frame_size + stream.headlen; end = ptr + frame_size; while (ptr < end) { r = pread(stream.fd, buf, sizeof(buf), ptr); -- cgit v1.2.3-70-g09d2