Hi On Friday 13 May 2005 01:36, Nico Sabbi wrote: > Michael Niedermayer wrote: > >>+ offset += xiphlacing(&ptr[offset], priv->len[1]); > > > >looks possibly exploitable if a packet is larger then 64*255= 16320 > > what value do you advise? len/255 + 64 for example [...] -- Michael