ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	fbf576417a	avcodec/exr: Check ac_count Fixes: signed integer overflow: -9223372036854775808 * 2 cannot be represented in type 'long long' Fixes: 36244/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EXR_fuzzer-6090656186499072 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9bc32d7c4b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	8a3eb4498b	avformat/wavdec: Use 64bit in new_pos computation Fixes: signed integer overflow: 129 * 16711680 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_WAV_fuzzer-6742285317439488 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9b57d2f0a9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	3a18a6acc4	avformat/sbgdec: Check for overflow in timestamp preparation Fixes: signed integer overflow: 9223372036854775807 + 86400000000 cannot be represented in type 'long' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_SBG_fuzzer-6731040263634944 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9dbed90840`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	a09127eacd	avformat/dsicin: Check packet size for overflow Fixes: signed integer overflow: 24672 + 2147483424 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_DSICIN_fuzzer-6731325979623424 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9d1c47ec03`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	70fa5522c7	avformat/dsfdec: Change order of operations in bitrate computation Fixes: signed integer overflow: 538976288 * 67372036 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_DSF_fuzzer-6751696819716096 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5e38eff284`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	6d86416c92	avformat/bfi: check nframes Fixes: signed integer overflow: -2147483648 - 1 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_BFI_fuzzer-6737028768202752 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b4e77dfca1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	f89b52fbca	avformat/avidec: fix position overflow in avi_load_index() Fixes: signed integer overflow: 9223372033098784808 + 4294967072 cannot be represented in type 'long' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_AVI_fuzzer-6732488912273408 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `527821a2dd`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	622b48d1fb	avformat/asfdec_f: Check sizeX against padding Fixes: signed integer overflow: 2147483607 + 64 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_ASF_fuzzer-6753897878257664 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f034c2e36a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	6666313248	avformat/aiffdec: Check for size overflow in header parsing Fixes: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_AIFF_fuzzer-6723467048255488 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `bae2e19777`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	3a67e33368	avcodec/aaccoder: Add minimal bias in search_for_ms() Fixes: floating point division by 0 Fixes: Ticket8218 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `75a099fc73`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	da9e84fabd	avformat/mov: Fix incorrect overflow detection in mov_read_sidx() Fixes: signed integer overflow: 9223372036854775807 + 1442840321 cannot be represented in type 'long' Fixes: 33670/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-6644379491106816 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `200406d930`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	890a801468	avformat/mov: Avoid undefined overflow in time_offset calculation Fixes: signed integer overflow: 8511838621821575200 - -3954125146725285889 cannot be represented in type 'long' Fixes: 33414/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-6610119325515776 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7666d588ba`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	ebc5ea216f	avfilter/af_drmeter: Check that there is data Fixes: floating point division by 0 Fixes: -nan is outside the range of representable values of type 'int' Fixes: Ticket8307 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4f49fa6abe`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	c7ac580288	avfilter/vf_fftdnoiz: Use lrintf() in export_row8() Fixes: 1.04064e+10 is outside the range of representable values of type 'int' Fixes: Ticket 8279 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1f21349d20`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	433d93a3b6	avfilter/vf_mestimate: Check b_count Fixes: left shift of negative value -1 Fixes: Ticket8270 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `06af6e101b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	5334967a56	avformat/mov: do not ignore errors in mov_metadata_hmmt() Fixes: Timeout Fixes: 35637/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-6311060272447488 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c52c99a18f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	aa5b8c9590	avformat/mxfdec: Check size for shrinking av_shrink_packet() takes int size, so size must fit in int Fixes: out of array access Fixes: 35607/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-4875541323841536 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `65b862ab59`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
maryam ebr	46bbf194c4	avcodec/dnxhddec: check and propagate function return value Similar to CVE-2013-0868, here return value check for 'init_vlc' is needed. crafted DNxHD data can cause unspecified impact. Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `7150f95756`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	b21120a924	swscale/slice: Fix wrong return on error Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7874d40f10`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	6a5d7fd8ad	avcodec/aacdec_template: Avoid some invalid values to be set by decode_audio_specific_config_gb() Fixes: NULL pointer dereference Fixes: decode_spectrum_and_dequant.mp4 Found-by: Rafael Dutra <rafael.dutra@cispa.de> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `eaec4df63f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	8da08ef1ff	swscale/slice: Check slice for allocation failure Fixes: null pointer dereference Fixes: alloc_slice.mp4 Found-by: Rafael Dutra <rafael.dutra@cispa.de> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `997f9cfc12`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	3b6f7601b7	avformat/matroskadec: Fix handling of huge default durations Fixes: negation of -9223372036854775808 cannot be represented in type 'int64_t' (aka 'long'); cast to an unsigned type to negate this value to itself Fixes: 33997/clusterfuzz-testcase-minimized-ffmpeg_dem_WEBM_DASH_MANIFEST_fuzzer-6752039691485184 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `343d950a4a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	1196932f1c	avcodec/lpc: check for zero err in normalization in compute_lpc_coefs() Fixes: floating point division by 0 Fixes: Ticket8213 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `70874e024a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	09f47af747	avcodec/j2kenc: Check for av_strtok() failure Fixes: CID1466601 Dereference null return value Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6a6a765fa4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	35a2e71385	avformat/ftp: Check for av_strtok() failure Fixes: CID1396258 Dereference null return value Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9d40782088`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	9f97a023d6	tools/cws2fws: Check read() for failure Fixes: CID1452579 Argument cannot be negative Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0b3cdd7cc2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	8f0d442434	avcodec/cpia: Fix missing src_size update Fixes: out of array read Fixes: 35210/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_CPIA_fuzzer-5669199688105984 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `cea05864e6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	7b5308045e	avcodec/exr: Better size checks Fixes: signed integer overflow: 3530839700044513368 + 8386093932303352321 cannot be represented in type 'long long' Fixes: 35182/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EXR_fuzzer-5398383270428672 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `18b0dd0738`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	bb1d2cf898	avcodec/clearvideo: Check tile_size to be not too large Fixes: left shift of 1 by 31 places cannot be represented in type 'int' Fixes: 35023/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_CLEARVIDEO_fuzzer-6740166587842560 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `11fac9613e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	417bc2a5b0	avcodec/utils: Use 64bit for intermediate in AV_CODEC_ID_ADPCM_THP* duration calculation Fixes: signed integer overflow: 486539264 * 14 cannot be represented in type 'int' Fixes: 35281/clusterfuzz-testcase-minimized-ffmpeg_dem_RSD_fuzzer-6068262742917120 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `00ae9b77ef`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	5f891809d7	avformat/aaxdec: Check avio_seek() in header reading Fixes: Timeout Fixes: 32450/clusterfuzz-testcase-minimized-ffmpeg_dem_AAX_fuzzer-4875522262827008 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `602bbf71f6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	b49039b23e	avcodec/hevc_sei: Use get_bits_long() for time_offset_value Fixes: assertion failure Fixes: crash_1 Found-by: Thuan Pham <tpham.unimelb@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d866787dac`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	ee34b6549f	avformat/rmdec: Check old_format len for overflow Maybe such large values could be disallowed earlier and closer to where they are set. Fixes: signed integer overflow: 538976288 * 8224 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_RM_fuzzer-6704350354341888 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `06d174e289`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	de255793d2	avformat/realtextdec: Check the pts difference before using it for the duration computation Fixes: signed integer overflow: 5404200000 - -9223372031709351616 cannot be represented in type 'long' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_REALTEXT_fuzzer-6737340551790592 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fe12aa6890`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	9957286378	avformat/qcp: Avoid negative nb_rates Fixes: signed integer overflow: 2 * -1725947872 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_QCP_fuzzer-6726807632084992 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1b865cc703`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	b425df191c	avformat/pp_bnk: Use 64bit in bitrate computation Fixes: signed integer overflow: 1207959552 * 4 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_PP_BNK_fuzzer-6747301169201152 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `88fc295838`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	acfce11c48	avformat/nutdec: Check tmp_size Fixes: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_NUT_fuzzer-6739990530883584 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1ca00b5e44`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	704e4b8213	avformat/msf: Check that channels doesnt overflow during extradata construction Fixes: signed integer overflow: 2048 * 1122336 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_MSF_fuzzer-6726959600107520 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a1a277926b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	8bddb1d3ef	avformat/subtitles: Check pts difference before use Fixes: signed integer overflow: 0 - -9223372036854775808 cannot be represented in type 'long' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_MPL2_fuzzer-6747053545881600 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e7a990164f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	a04d889c52	avformat/mpc8: Check for position overflow in mpc8_handle_chunk() Fixes: signed integer overflow: 15 + 9223372036854775796 cannot be represented in type 'long' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_MPC8_fuzzer-6723520756318208 Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_MPC8_fuzzer-6739833034768384 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8ef25d1182`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	612472c647	avformat/mccdec: Fix overflows in num/den Fixes: signed integer overflow: 6365816 * 1000 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_MCC_fuzzer-6737934184218624 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ff05326081`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	ce60ee3e5c	avformat/iff: Use 64bit in duration computation Fixes: signed integer overflow: 588 * 16719904 cannot be represented in type 'int' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_IFF_fuzzer-6748331936186368 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `93d964689c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	982654b90c	avformat/dxa: Check fps to be within the supported range more precissely Fixes: negation of -2147483648 cannot be represented in type 'int32_t' (aka 'int'); cast to an unsigned type to negate this value to itself Fixes: assertion failure Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_DXA_fuzzer-6744985740378112 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6ea494befc`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	b01534293e	avcodec/iff: Only write palette to plane 1 if its PAL8 Fixes: null pointer passed as argument 1, which is declared to never be null Fixes: 33791/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_IFF_ILBM_fuzzer-5107575256383488.fuzz Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `216eb60b85`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Michael Niedermayer	b354bcf027	avformat/tta: Check for EOF in index reading loop Fixes: OOM Fixes: 33585/clusterfuzz-testcase-minimized-ffmpeg_dem_TTA_fuzzer-4564665830080512 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b72d657b73`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-09-08 21:31:50 +02:00
Jan Ekström	b1f2d203c0	avfilter/vf_scale: set the RGB matrix coefficients in case of RGB This fixes the passing through of non-RGB matrix from input to output when conversion from YCbCr to RGB happens. (cherry picked from commit `2818b14392`)	2021-09-06 09:11:25 +03:00
Jan Ekström	ae057cec10	avfilter/vf_scale: reset color matrix in case of identity & non-RGB Fixes passing through mismatching metadata from the input side when RGB input (from f.ex. H.264 or HEVC) gets converted to YCbCr. Fixes #9132 (cherry picked from commit `9dd410c804`)	2021-08-28 20:59:22 +03:00
Jan Ekström	926d8b844f	ffmpeg: fix order between field order autodetection and override Having the override before autodetection meant that the overridden value got overwritten by the autodetected result each time, effectively disabling the ability to utilize the `-top` option for override purposes. Somehow I missed this in `fbb44bc51a` , even though the lines were within the context. Probably the code originally being after this logic had something to do with it, but previously it only touched the avformat context's codecpar, which did not affect the encoder codec context whatsoever. Fixes #9320 Fixes #9339 (cherry picked from commit `4c694093be`)	2021-08-28 20:58:58 +03:00
James Almer	bf87bdd3f6	avcodec/h264_slice: clear old slice POC values on parsing failure If a slice header fails to parse, and the next one uses different Sequence and Picture parameter sets, certain values may not be read if they are not coded, resulting in the previous slice values being used. Signed-off-by: James Almer <jamrial@gmail.com>	2021-08-10 15:22:12 -03:00
Marton Balint	de1132a891	avfilter/f_metadata: do not return the frame early if there is no metadata The early return caused isses for the "add" mode (got fixed in `c95dfe5cce`) and the "select" mode needs a similar fix. It is probably better to fully remove the check, since all modes work correctly with NULL metadata. Signed-off-by: Marton Balint <cus@passwd.hu> (cherry picked from commit `758e2da289`)	2021-07-18 22:32:22 +02:00

1 2 3 4 5 ...

102014 Commits