avcodec/mjpegdec: Fix runtime error: signed integer overflow: -24543 * 2031616 cannot be represented in type 'int'

Fixes: 943/clusterfuzz-testcase-5114865297391616 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a78ae465fda902565ed041d93403e04490b4be0d) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2017-04-27 15:10:25 +0200
committer: Michael Niedermayer <michael@niedermayer.cc> 2017-08-23 13:15:17 +0200
commit: 133705f9e89a69463c2749188aa0d9d7acc26c8e (patch)
tree: da679f6639f45833234ea26843f2528f70c27e9c
parent: 3755414d01a39f27abf435a0c943f02b78c62211 (diff)
download: ffmpeg-133705f9e89a69463c2749188aa0d9d7acc26c8e.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/libavcodec/mjpegdec.c b/libavcodec/mjpegdec.c
index b72d6805b7..8298298f23 100644
--- a/libavcodec/mjpegdec.c
+++ b/libavcodec/mjpegdec.c
@@ -698,7 +698,8 @@ static int decode_block_progressive(MJpegDecodeContext *s, int16_t *block,
                                     int16_t *quant_matrix,
                                     int ss, int se, int Al, int *EOBRUN)
 {
-    int code, i, j, level, val, run;
+    int code, i, j, val, run;
+    unsigned level;
 
     if (*EOBRUN) {
         (*EOBRUN)--;
author	Michael Niedermayer <michael@niedermayer.cc>	2017-04-27 15:10:25 +0200
committer	Michael Niedermayer <michael@niedermayer.cc>	2017-08-23 13:15:17 +0200
commit	133705f9e89a69463c2749188aa0d9d7acc26c8e (patch)
tree	da679f6639f45833234ea26843f2528f70c27e9c
parent	3755414d01a39f27abf435a0c943f02b78c62211 (diff)
download	ffmpeg-133705f9e89a69463c2749188aa0d9d7acc26c8e.tar.gz