angler-fishThe Vulnerability History Project

Fix for frame buffer resizing when new size is less than 8 bytes larger than old size. Changed several ints to size_t.

      BUG=55119
TEST=None

Review URL: http://codereview.chromium.org/3302024

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@59384 0039d316-1c4b-4281-b951-d872f2087c98
by Joy the Zorse 2010-09-14 17:03:52 UTC
commit f86ee477b9885180a2fbbe44122ac019312e452b
Chromium Fix CVE-2010-3729
net/spdy/spdy_framer.cc
+8 -7
expand_less