From eb4857b848cc4500823e524adbe5c213e2717e07 Mon Sep 17 00:00:00 2001
From: Mauro Carvalho Chehab <mchehab@infradead.org>
Date: Fri, 18 Aug 2006 07:40:28 -0300
Subject: Fix an array overflow on bt866

From: Mauro Carvalho Chehab <mchehab@infradead.org>

The Coverity checker spotted the following two array overflows.

Registers 0xcc and 0xdc were cached on reg[] array, with only 128 elements,
instead of 256.

Thanks-to: Adrian Bunk <bunk@stusta.de> for pointing this

CC: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Mauro Carvalho Chehab <mchehab@infradead.org>
---
 linux/drivers/media/video/bt866.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'linux/drivers/media/video/bt866.c')

diff --git a/linux/drivers/media/video/bt866.c b/linux/drivers/media/video/bt866.c
index 64f21c0a2..06c1a918f 100644
--- a/linux/drivers/media/video/bt866.c
+++ b/linux/drivers/media/video/bt866.c
@@ -66,7 +66,7 @@ MODULE_LICENSE("GPL");
 struct bt866 {
 	struct i2c_client *i2c;
 	int addr;
-	unsigned char reg[128];
+	unsigned char reg[256];
 
 	int norm;
 	int enable;
-- 
cgit v1.2.3