angler-fishThe Vulnerability History Project

alsdec: check opt_order.

      Fixes out of array write in quant_cof.
Also make sure no invalid opt_order stays in the context.

Fixes CVE-2012-2775

Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
Signed-off-by: Justin Ruggles <justin.ruggles@gmail.com>
by Nelson the Hummingbird 2012-03-24 00:39:13 UTC
commit 9853e41aa0a6cfff629ff7009685eb8bf8d64e7f
FFmpeg Fix CVE-2012-2775
libavcodec/alsdec.c
-5
expand_less