From 159efc43e59dd8a2ec921f686d929398b8ec319b Mon Sep 17 00:00:00 2001
From: Tim Terriberry <tterribe@xiph.org>
Date: Wed, 13 Oct 2010 20:10:36 +0000
Subject: Forward port r14064 from libvorbis.

Add checks/rejection for absurdly huge codebooks.


git-svn-id: https://svn.xiph.org/trunk/Tremor@17511 0101bb08-14d6-0310-b084-bc0e0c8e3800
---
 codebook.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/codebook.c b/codebook.c
index 7bbad13..3539875 100644
--- a/codebook.c
+++ b/codebook.c
@@ -37,6 +37,8 @@ int vorbis_staticbook_unpack(oggpack_buffer *opb,static_codebook *s){
   s->entries=oggpack_read(opb,24);
   if(s->entries==-1)goto _eofout;
 
+  if(_ilog(s->dim)+_ilog(s->entries)>24)goto _eofout;
+
   /* codeword ordering.... length ordered or unordered? */
   switch((int)oggpack_read(opb,1)){
   case 0:
-- 
cgit v1.2.1