Android 5.1.1 release 9
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEABECAAYFAlW6dGgACgkQ6K0/gZqxDngQegCffr/vOuDhGHERjapvkS92nBqI
87AAn368Id7CAqPjoOSPjYRFED1RY7XL
=/odK
-----END PGP SIGNATURE-----
Prevent integer underflow if size is below 6

When processing 3GPP metadata, a subtraction operation may underflow and
lead to a rather large linear byteswap operation in the subsequent
framedata decoding code. Bound the 'size' value to prevent this from
occurring.

Bug: 20923261
Change-Id: I35dfbc8878c6b65cfe8b8adb7351a77ad4d604e5
(cherry picked from commit 9458e715d391ee8fe455fc31f07ff35ce12e0531)
1 file changed