From 78e2380a6d09e7a8b2a74d090abfb0a922e046f6 Mon Sep 17 00:00:00 2001
From: "Ronald S. Bultje" <rsbultje@gmail.com>
Date: Mon, 21 Feb 2011 13:44:37 -0500
Subject: targa: prevent integer overflow in bufsize check.

---
 libavcodec/targa.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'libavcodec/targa.c')

diff --git a/libavcodec/targa.c b/libavcodec/targa.c
index 0892b6f0ed..3c220f4082 100644
--- a/libavcodec/targa.c
+++ b/libavcodec/targa.c
@@ -34,7 +34,7 @@ typedef struct TargaContext {
 } TargaContext;
 
 #define CHECK_BUFFER_SIZE(buf, buf_end, needed, where) \
-    if(buf + needed > buf_end){ \
+    if(needed > buf_end - buf){ \
         av_log(avctx, AV_LOG_ERROR, "Problem: unexpected end of data while reading " where "\n"); \
         return -1; \
     } \
-- 
cgit v1.2.3