MSE: Fix Mp4 TRUN parsing overflow
TrackFragmentRun::Parse
sample_count can take any value between 0x0 and 0xffffffff. We must
check for size_t overflow when multiplying sample_count by "fields".
We should also avoid attempting to resize vectors beyond their
max_size() (potential OOB depending on stl library impl).
BUG=679640,
TEST=unit test, manual verification of POC.
Review-Url: https://codereview.chromium.org/2643573003
Cr-Commit-Position: refs/heads/master@{#444524}
The Vulnerability History Project