avcodec/mjpegdec: Fix runtime error: signed integer overflow: -24543 * 2031616 cannot be represented in type 'int'

Fixes: 943/clusterfuzz-testcase-5114865297391616 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a78ae465fda902565ed041d93403e04490b4be0d) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2017-04-27 15:10:25 +0200
committer: Michael Niedermayer <michael@niedermayer.cc> 2017-05-14 12:20:15 +0200
commit: b0d6bff2f29d9eebe0cbc0de04d8554980f20fea (patch)
tree: fc18b27ec2968bdc611112ed00cde5a0542003df
parent: 231e242ed2e3d17381b7c9437281e201864c665f (diff)
download: ffmpeg-b0d6bff2f29d9eebe0cbc0de04d8554980f20fea.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/libavcodec/mjpegdec.c b/libavcodec/mjpegdec.c
index 090f269dc3..f2feac0207 100644
--- a/libavcodec/mjpegdec.c
+++ b/libavcodec/mjpegdec.c
@@ -753,7 +753,8 @@ static int decode_block_progressive(MJpegDecodeContext *s, int16_t *block,
                                     int16_t *quant_matrix,
                                     int ss, int se, int Al, int *EOBRUN)
 {
-    int code, i, j, level, val, run;
+    int code, i, j, val, run;
+    unsigned level;
 
     if (*EOBRUN) {
         (*EOBRUN)--;
author	Michael Niedermayer <michael@niedermayer.cc>	2017-04-27 15:10:25 +0200
committer	Michael Niedermayer <michael@niedermayer.cc>	2017-05-14 12:20:15 +0200
commit	b0d6bff2f29d9eebe0cbc0de04d8554980f20fea (patch)
tree	fc18b27ec2968bdc611112ed00cde5a0542003df
parent	231e242ed2e3d17381b7c9437281e201864c665f (diff)
download	ffmpeg-b0d6bff2f29d9eebe0cbc0de04d8554980f20fea.tar.gz