ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	71dd8b8da0	libavformat/hls: Free keys Fixes: memleak Fixes: 50703/clusterfuzz-testcase-minimized-ffmpeg_dem_HLS_fuzzer-6399058578636800 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Steven Liu <lingjiujianke@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d32a9f3137`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-11-03 23:29:46 +01:00
Michael Niedermayer	728b3bc74e	avcodec/fmvc: Move frame allocation to a later stage This way more things are checked before allocation Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9783749c66`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-11-03 23:29:45 +01:00
Michael Niedermayer	6535e158f9	avfilter/vf_showinfo: remove backspaces They mess with storing editing and comparing the results Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `31581ae7ee`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-11-03 23:29:45 +01:00
Michael Niedermayer	14ec214d5c	avcodec/speedhq: Check width Fixes: out of array access Fixes: 50014/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SPEEDHQ_fuzzer-4748914632294400 Alternatively the buffer size can be increased Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f0395f9ef6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-11-03 23:29:45 +01:00
Michael Niedermayer	1f3236ac1e	avcodec/bink: disallow odd positioned scaled blocks Fixes: out of array access Fixes: 47911/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_BINK_fuzzer-6194020855971840 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Anton Khirnov <anton@khirnov.net> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b14104a637`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-11-03 23:29:27 +01:00
Chema Gonzalez	a00072a9d5	libswscale: force a minimum size of the slide for bayer sources Bayer sources are read in groups of 2 lines (e.g. for a BGGR flavor, the first row contains only B and G samples, while the second row contains only G and R samples). They need to be read as a whole. Signed-off-by: Anton Khirnov <anton@khirnov.net> (cherry picked from commit `bf64a75c5a`) Signed-off-by: Anton Khirnov <anton@khirnov.net>	2022-10-14 12:25:40 +02:00
Anton Khirnov	ddf3bedfb8	lavc/videotoolbox: do not pass AVCodecContext to decoder output callback The opaque parameter for the callback is set in videotoolbox_start(), called when the hwaccel is initialized. When frame threading is used, avctx will be the context corresponding to the frame thread currently doing the decoding. Using this same codec context in all subsequent invocations of the decoder callback (even those triggered by a different frame thread) is unsafe, and broken after `cc867f2c09`, since each frame thread now cleans up its hwaccel state after decoding each frame. Fix this by passing hwaccel_priv_data as the opaque parameter, which exists in a single instance forwarded between all frame threads. The only other use of AVCodecContext in the decoder output callback is as a logging context. For this purpose, store a logging context in hwaccel_priv_data. (cherry picked from commit `d7f4ad88a0`) Signed-off-by: Anton Khirnov <anton@khirnov.net>	2022-09-25 10:01:34 +02:00
Anton Khirnov	fe741cd0af	lavc/pthread_frame: always transfer stashed hwaccel state Fixes assertion failures after avcodec_flush_buffers(), where stashed hwaccel state is present, but prev_thread is NULL. Found-by: Wang Bin <wbsecg1@gmail.com> (cherry picked from commit `c504fb8692`) Signed-off-by: Anton Khirnov <anton@khirnov.net>	2022-09-25 10:01:34 +02:00
James Almer	57e15b2e07	avformat/cafenc: derive Opus frame size from the relevant stream parameters Use the stream duration as last resort, as an off-by-one result of the "st->duration / (caf->packets - 1)" calculation can break playback on some devices. Also, don't write the sample_rate value propagated by encoders like libopus. The sample rate of the audio fed to it is irrelevant after being encoded. Fixes ticket #9930. Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `aa79d13f51`)	2022-09-24 12:23:50 -03:00
James Cowgill	c1b8ffbed8	avcodec/arm/sbcenc: avoid callee preserved vfp registers When compiling FFmpeg with GCC-9, some very random segfaults were observed in code which had previously called down into the SBC encoder NEON assembly routines. This was caused by these functions clobbering some of the vfp callee saved registers (d8 - d15 aka q4 - q7). GCC was using these registers to save local variables, but after these functions returned, they would contain garbage. Fix by reallocating the registers in the two affected functions in the following way: ff_sbc_analyze_4_neon: q2-q5 => q8-q11, then q1-q4 => q8-q11 ff_sbc_analyze_8_neon: q2-q9 => q8-q15 The reason for using these replacements is to keep closely related sets of registers consecutively numbered which hopefully makes the code more easy to follow. Since this commit only reallocates registers, it should have no performance impact. Signed-off-by: James Cowgill <jcowgill@debian.org> Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit `50a4dff69f`) Signed-off-by: Martin Storsjö <martin@martin.st>	2022-09-20 11:21:45 +03:00
James Almer	068faf4f74	avfilter/vf_scale: overwrite the width and height expressions with the original values Instead of the potentially adjusted ones. Otherwise, if config_props() is called again and if using force_original_aspect_ratio, the already adjusted values could be altered again. Example command line scale=size=1920x1000:force_original_aspect_ratio=decrease:force_divisible_by=2 user value 1920x1000 -> 1920x798 on init_dict() -> 1918x798 on frame change when eval_mode == EVAL_MODE_INIT, which after `e645a1ddb9` could be at the very first frame. Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `d9e3cb7e73`)	2022-09-07 20:37:54 -03:00
Anton Khirnov	3bc28e9d1a	lavc/pthread_frame: avoid leaving stale hwaccel state in worker threads This state is not refcounted, so make sure it always has a well-defined owner. Remove the block added in `091341f2ab`, as this commit also solves that issue in a more general way. (cherry picked from commit `cc867f2c09`) Signed-off-by: Anton Khirnov <anton@khirnov.net> (cherry picked from commit `35aa7e70e7`) Signed-off-by: Anton Khirnov <anton@khirnov.net>	2022-09-06 09:42:34 +02:00
Michael Niedermayer	491bf78721	Update for 5.0.2 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	9b4f9233c3	avformat/asfdec_o: limit recursion depth in asf_read_unknown() The threshold of 5 is arbitrary, both smaller and larger should work fine Fixes: Stack overflow Fixes: 50603/clusterfuzz-testcase-minimized-ffmpeg_dem_ASF_O_fuzzer-6049302564175872 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1f1a368169`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	3c293ad92c	doc/git-howto.texi: Document commit signing Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ced0dc807e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	a221a3bfaf	libavcodec/8bps: Check that line lengths fit within the buffer Fixes: Timeout Fixes: undefined pointer arithmetic Fixes: 50330/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EIGHTBPS_fuzzer-5436287485607936 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2316d5ec1a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	9e92d14dbf	avcodec/midivid: Perform lzss_uncompress() before ff_reget_buffer() This would avoid regeting the frame on lzss errors Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `628fb97efb`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	b24407a9ba	libavformat/iff: Check for overflow in body_end calculation Fixes: signed integer overflow: -6322983228386819992 - 5557477266266529857 cannot be represented in type 'long' Fixes: 50112/clusterfuzz-testcase-minimized-ffmpeg_dem_IFF_fuzzer-6329186221948928 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `bcb4690304`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	74f855fed2	avformat/avidec: Prevent entity expansion attacks Fixes: Timeout Fixes no testcase, this is the same idea as similar attacks against XML parsers Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f3e823c2aa`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	408c0c43d7	avcodec/h263dec: Sanity check against minimal I/P frame size Fixes: Timeout Fixes: 49718/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEG4_fuzzer-4874987894341632 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ca4ff9c21c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	d246af82c2	avcodec/hevcdec: Check s->ref in the md5 path similar to hwaccel This is somewhat redundant with the is_decoded check. Maybe there is a nicer solution Fixes: Null pointer dereference Fixes: 49584/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-5297367351427072 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3b51e19922`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	a90844d443	avcodec/mpegaudiodec_template: use unsigned shift in handle_crc() Fixes: left shift of 192 by 24 places cannot be represented in type 'int' Fixes: 49577/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MP1FLOAT_fuzzer-5205996678545408 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7086491fa0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	50698086ee	avformat/subviewerdec: Make read_ts() more flexible Fixes: signed integer overflow: -1948269928 * 10 cannot be represented in type 'int' Fixes: 49451/clusterfuzz-testcase-minimized-ffmpeg_dem_SUBVIEWER_fuzzer-6344614822412288 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg (cherry picked from commit `58a8e739ef`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	7ce588047b	avcodec/mjpegdec: bayer and rct are incompatible Fixes: out of array read Fixes: 49434/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_TIFF_fuzzer-5208501080686592 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a44f5a5212`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	e9e4d21911	MAINTAINERS: Add ED25519 key for signing my commits in the future Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `05225180be`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	c2cb656667	avcodec/hevc_filter: copy_CTB() only within width&height Fixes: out of array access Fixes: 49271/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-5424984922652672 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `009ef35d38`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	447c1942ce	avcodec/tiff: Check tile_length and tile_width Fixes: Division by 0 Fixes: 49235/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_TIFF_fuzzer-5495613847896064 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `76112c2b41`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	b821f224fb	avcodec/mss4: Check image size with av_image_check_size2() Fixes: Timeout Fixes: 48418/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MTS2_fuzzer-4834851466903552 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4e145f1dcd`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	904cb851ce	avformat/flvdec: Check for EOF in index reading Fixes: Timeout Fixes: 47992/clusterfuzz-testcase-minimized-ffmpeg_dem_LIVE_FLV_fuzzer-6020443879899136 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ceff5d7b74`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	c39b1d310a	avformat/nutdec: Check get_packetheader() in mainheader Fixes; Timeout Fixes: 48794/clusterfuzz-testcase-minimized-ffmpeg_dem_NUT_fuzzer-6524604713140224 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b5de084aa6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	04dabb241b	avformat/asfdec_f: Use 64bit for packet start time Fixes: signed integer overflow: 2147483647 + 32 cannot be represented in type 'int' Fixes: 49014/clusterfuzz-testcase-minimized-ffmpeg_dem_ASF_fuzzer-6314973315334144 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8ed78486fc`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	aeaa86aacd	avcodec/exr: Check x/ysize Fixes: OOM Fixes: 48911/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EXR_fuzzer-6352002510094336 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `614a4d1476`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	a158789f0d	tools/target_dec_fuzzer: Adjust threshold for MMVIDEO Fixes: Timeout Fixes: 49003/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MMVIDEO_fuzzer-5550368423018496 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Peter Ross <pross@xvid.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3592b05c84`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	f22b7e65c5	avcodec/lagarith: Check dst/src in zero run code Fixes: out of array access Fixes: 48799/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_LAGARITH_fuzzer-4764457825337344 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9450f75974`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	fe026fd0cb	avcodec/h264dec: Skip late SEI Fixes: Race condition Fixes: clusterfuzz-testcase-minimized-mediasource_MP2T_AVC_pipeline_integration_fuzzer-6282675434094592 Found-by: google ClusterFuzz Tested-by: Dan Sanders <sandersd@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f7dd408d64`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	1fbd6f8d05	avcodec/sbrdsp_fixed: Fix integer overflows in sbr_qmf_deint_neg_c() Fixes: signed integer overflow: 2147483645 + 16 cannot be represented in type 'int' Fixes: 46993/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AAC_FIXED_fuzzer-4759025234870272 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1537f40516`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	e028020213	avfilter/vf_signature: Fix integer overflow in filter_frame() Fixes: CID1403233 The second of the 2 changes may be unneeded but will help coverity Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `dd6040675e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	273a3c5b82	avformat/rtsp: break on unknown protocols This function needs more cleanup and it lacks error handling Fixes: use of uninitialized memory Fixes: CID700776 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `73c0fd27c5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	c03f09f6f4	avcodec/hevcdsp_template: stay within tables in sao_band_filter() Fixes: out of array read Fixes: 47875/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-5719393113341952 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9c5250a561`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	5bf38f660c	avcodec/tiff: Check pixel format types for dng Fixes: out of array access Fixes: 48271/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_TIFF_fuzzer-6149705769287680 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `75f3d1b822`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	dac6f854a9	avcodec/qpeldsp: copy less for the mc0x cases Fixes: out of array access Fixes: 47936/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEG4_fuzzer-5745039940124672 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e690d4edf5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	024b94bab3	avformat/aaxdec: Check for empty segments Fixes: Timeout Fixes: 48154/clusterfuzz-testcase-minimized-ffmpeg_dem_AAX_fuzzer-5149094353436672 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `db31b3ea86`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	89685f280a	avcodec/ffv1dec: Limit golomb rice coded slices to width 8M This limit is possibly not reachable due to other restrictions on buffers but the decoder run table is too small beyond this, so explicitly check for it. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b4431399ec`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	b5fc01adbe	avformat/iff: simplify duration calculation Fixes: signed integer overflow: 315680096256 * 134215943 cannot be represented in type 'long long' Fixes: 48713/clusterfuzz-testcase-minimized-ffmpeg_dem_IFF_fuzzer-5886272312311808 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0740641e93`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	048f3714c2	avcodec/wnv1: Check for width =1 The decoder only outputs pixels for width >1 images, fail early Fixes: Timeout Fixes: 48298/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WNV1_fuzzer-6198626319204352 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d98d5a436a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	ae8aabe398	avcodec/ffv1dec_template: fix indention Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `eee7364c90`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	47dc801ec0	avformat/sctp: close socket on errors This is untested as i have no testcase Fixes: CID1302709 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c9a2996544`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	abbf22ac63	avformat/cinedec: Check size and pos more Fixes: signed integer overflow: 9223372036848019263 + 134232320 cannot be represented in type 'long' Fixes: 48155/clusterfuzz-testcase-minimized-ffmpeg_dem_CINE_fuzzer-5751429207293952 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `884a108121`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	ab936ed53e	avcodec/aasc: Fix indention Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `af2ed09220`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	0ba8bf7011	avcodec/qdrw: adjust max colors to array size Fixes: out of array access Fixes: 48429/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_QDRAW_fuzzer-4608329791438848 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `cd847f86d3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00

1 2 3 4 5 ...

105313 Commits