Android 5.1.1 release 12
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEABECAAYFAlXJL5IACgkQ6K0/gZqxDngNiACfRjDvZIYytsCsQYOUv/gEm1YM
dTYAniyyyxWLHSGBq/EAAu+l/CMDNUtP
=YVpL
-----END PGP SIGNATURE-----
Prevent integer underflow if size is below 6

When processing 3GPP metadata, a subtraction operation may underflow and
lead to a rather large linear byteswap operation in the subsequent
framedata decoding code. Bound the 'size' value to prevent this from
occurring.

Bug: 20923261
Change-Id: I35dfbc8878c6b65cfe8b8adb7351a77ad4d604e5
(cherry picked from commit 9458e715d391ee8fe455fc31f07ff35ce12e0531)
1 file changed