Merged revisions 18436 via svnmerge from

https://origsvn.digium.com/svn/asterisk/branches/1.2 ........ r18436 | tilghman | 2006-04-07 17:07:38 -0500 (Fri, 07 Apr 2006) | 2 lines Bug 6913 - fix for possible buffer overflow ........ git-svn-id: http://svn.digium.com/svn/asterisk/trunk@18437 f38db490-d61c-443f-a65b-d21fe96a405b
author: tilghman <tilghman@f38db490-d61c-443f-a65b-d21fe96a405b> 2006-04-07 22:11:12 +0000
committer: tilghman <tilghman@f38db490-d61c-443f-a65b-d21fe96a405b> 2006-04-07 22:11:12 +0000
commit: 8057b6139c5489de4eb83d32dd4c68dbd66d8ed9 (patch)
tree: 5bff76ddf42eea086e47037e298722509a23b79b /formats
parent: 99065f49c3a4112d857ad23def393fe308c17a56 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/formats/format_jpeg.c b/formats/format_jpeg.c
index d71aeec80..96fed0dea 100644
--- a/formats/format_jpeg.c
+++ b/formats/format_jpeg.c
@@ -55,7 +55,7 @@ static struct ast_frame *jpeg_read_image(int fd, int len)
 	struct ast_frame fr;
 	int res;
 	char buf[65536];
-	if (len > sizeof(buf)) {
+	if (len > sizeof(buf) || len < 0) {
 		ast_log(LOG_WARNING, "JPEG image too large to read\n");
 		return NULL;
 	}
author	tilghman <tilghman@f38db490-d61c-443f-a65b-d21fe96a405b>	2006-04-07 22:11:12 +0000
committer	tilghman <tilghman@f38db490-d61c-443f-a65b-d21fe96a405b>	2006-04-07 22:11:12 +0000
commit	8057b6139c5489de4eb83d32dd4c68dbd66d8ed9 (patch)
tree	5bff76ddf42eea086e47037e298722509a23b79b /formats
parent	99065f49c3a4112d857ad23def393fe308c17a56 (diff)