avcodec/mjpegdec: Fix runtime error: signed integer overflow: -24543 * 2031616 cannot be represented in type 'int'

Fixes: 943/clusterfuzz-testcase-5114865297391616 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a78ae465fda902565ed041d93403e04490b4be0d) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2017-04-27 15:10:25 +0200
committer: Michael Niedermayer <michael@niedermayer.cc> 2017-05-16 16:00:22 +0200
commit: ac74ac9e1d2f23e3e41a53ea5abe5520013c86cb (patch)
tree: 1c1b67d44f814079cadf1a5056e903cae47e247b
parent: a6fb07d5ba3a0a1561c7e354ce9b8fbf6b404c04 (diff)
download: ffmpeg-ac74ac9e1d2f23e3e41a53ea5abe5520013c86cb.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/libavcodec/mjpegdec.c b/libavcodec/mjpegdec.c
index a073c0967e..d7ef0067b5 100644
--- a/libavcodec/mjpegdec.c
+++ b/libavcodec/mjpegdec.c
@@ -753,7 +753,8 @@ static int decode_block_progressive(MJpegDecodeContext *s, int16_t *block,
                                     int16_t *quant_matrix,
                                     int ss, int se, int Al, int *EOBRUN)
 {
-    int code, i, j, level, val, run;
+    int code, i, j, val, run;
+    unsigned level;
 
     if (*EOBRUN) {
         (*EOBRUN)--;
author	Michael Niedermayer <michael@niedermayer.cc>	2017-04-27 15:10:25 +0200
committer	Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:22 +0200
commit	ac74ac9e1d2f23e3e41a53ea5abe5520013c86cb (patch)
tree	1c1b67d44f814079cadf1a5056e903cae47e247b
parent	a6fb07d5ba3a0a1561c7e354ce9b8fbf6b404c04 (diff)
download	ffmpeg-ac74ac9e1d2f23e3e41a53ea5abe5520013c86cb.tar.gz