ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	f0a24f2f77	avcodec/aacdec: Fix runtime error: signed integer overflow: 2147483520 + 255 cannot be represented in type 'int' Fixes: 1656/clusterfuzz-testcase-minimized-5900404925661184 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `94d05ff159`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-06-18 16:05:22 +02:00
Michael Niedermayer	d2f43c48f9	avcodec/aacdec_template: Fix fixed point scale in decode_cce() Fixes: runtime error: shift exponent 1073741824 is too large for 32-bit type 'int' Fixes: 1654/clusterfuzz-testcase-minimized-5151903795118080 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `53a502206a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-06-18 16:05:22 +02:00
Timo Rothenpieler	8c021166d1	avcodec/nvenc: remove unnecessary alignment Fixes #6260	2017-05-23 12:03:07 +02:00
Michael Niedermayer	9b9a620ce6	Update for 3.1.8 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> n3.1.8	2017-05-17 02:44:30 +02:00
Michael Niedermayer	792f15c109	avcodec/flicvideo: Check frame_size before decrementing Fixes: runtime error: signed integer overflow: -2147483627 - 22 cannot be represented in type 'int' Fixes: 1637/clusterfuzz-testcase-minimized-5376582493405184 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `355e27e24d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-17 02:40:21 +02:00
Michael Niedermayer	63cc52ed97	avcodec/mlpdec: Fix runtime error: left shift of negative value -1 Fixes: 1636/clusterfuzz-testcase-minimized-5310494757879808 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `552adf1dd3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-17 02:40:21 +02:00
Michael Niedermayer	a32a9bde99	avcodec/takdec: Fix runtime error: left shift of negative value -42 Fixes: 1635/clusterfuzz-testcase-minimized-4992749856096256 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `99c4c76cfb`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-17 02:40:21 +02:00
Michael Niedermayer	d35159d3bb	avcodec/hq_hqa: Fix: runtime error: signed integer overflow: -255 * 10180917 cannot be represented in type 'int' Fixes: 1626/clusterfuzz-testcase-minimized-6416580571299840 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3d9cb583c8`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-17 02:40:21 +02:00
James Almer	c823d72a5f	avcodec/hevc_sei: fix amount of bits skipped when reading picture timing SEI message The code was skipping the entire reported SEI message size regardless of the amount of bits read. While in theory safe for NALU where the picture timing SEI message is alone or at the end as we're using the checked bitstream reader, it isn't in any other situation, where every SEI message in the NALU after the picture timing one would potentially fail to parse. Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `f738140807`) Conflicts: libavcodec/hevc_sei.c	2017-05-16 18:07:01 -03:00
Aaron Levinson	f125c54b7a	avutil/hwcontext_dxva2: Don't improperly free IDirect3DSurface9 objects Add dxva2_pool_release_dummy() and use it in call to av_buffer_create() in dxva2_pool_alloc(). Prior to this change, av_buffer_create() was called with NULL for the third argument, which indicates that av_buffer_default_free() should be used to free the buffer's data. Eventually, it gets to buffer_pool_free() and calls buf->free() on a surface object (which is av_buffer_default_free()). This can result in a crash when the debug version of the C-runtime is used on Windows. While it doesn't appear to result in a crash when the release version of the C-runtime is used on Windows, it likely results in memory corruption, since av_free() is being called on memory that was allocated using IDirectXVideoAccelerationService::CreateSurface(). Signed-off-by: Aaron Levinson <alevinsn@aracnet.com> Reviewed-by: wm4 <nfxjfg@googlemail.com> Reviewed-by: Steven Liu <lingjiujianke@gmail.com> Reviewed-by: Mark Thompson <sw@jkqxz.net> (cherry picked from commit `0c1c514643`)	2017-05-16 22:04:49 +01:00
James Almer	75f9fe1519	avcodec/aac_adtstoasc: fix ASC passthrough on small frames ASC frames smaller than AAC_ADTS_HEADER_SIZE were being discarded. Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `0f05f2c7e6`)	2017-05-16 11:35:15 -03:00
Aaron Levinson	9ebbb29ad6	avformat/utils: free AVStream.codec properly in free_stream() Fixes memory leaks. Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `b9d2005ea5`)	2017-05-16 11:33:35 -03:00
James Almer	1564125e4e	avcodec/options: do a more thorough clean up in avcodec_copy_context() Free coded_frame and coded_side_data to prevent potential leaks. Reviewed-by: Aaron Levinson <alevinsn@aracnet.com> Tested-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `cac8de2da5`)	2017-05-16 11:31:15 -03:00
James Almer	d2c6bcdbf1	avcodec/options: factorize avcodec_copy_context() cleanup code Reviewed-by: Aaron Levinson <alevinsn@aracnet.com> Tested-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `54a4c9b4e9`)	2017-05-16 11:30:49 -03:00
James Almer	7f2eeb2c74	avformat/concatdec: fix the h264 annexb extradata check The start code can be either in the first three or four bytes. (cherry picked from commit `b4330a0e02`)	2017-05-16 11:30:16 -03:00
Michael Niedermayer	54918674f7	avcodec/truemotion1: Fix multiple runtime error: signed integer overflow: 1246906962 * 2 cannot be represented in type 'int' Fixes: 1616/clusterfuzz-testcase-minimized-5119196578971648 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 5ea6bc2a166edac37042f2bbc28eb603a0fbeccb) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	ab22fca14b	avcodec/svq3: Fix runtime error: left shift of negative value -6 Fixes: 1604/clusterfuzz-testcase-minimized-5312060206350336 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a6eb006ad4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	b25aca2af8	avcodec/tiff: reset sampling[] if its invalid Fixes divission by 0 Fixes: clusterfuzz-testcase-minimized-5592896440893440 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f08122fbe0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	0159afe0c2	avcodec/aacps: Fix undefined behavior Fixes: 1337/clusterfuzz-testcase-minimized-5212314171080704 Fixes the existence of a potentially invalid pointer intermediate Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `527f89e059`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	70cda595c3	avcodec/opus_silk: Fix integer overflow and out of array read Fixes: 1362/clusterfuzz-testcase-minimized-6097275002552320 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4654baff12`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	6fa860449f	avcodec/flacdec: Return error code instead of 0 for failures Fixes: infinite loop Fixes: 1418/clusterfuzz-testcase-minimized-5934472438480896 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3f5a68533d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	1e5d151417	avcodec/snowdec: Check width Fixes: out of array read Fixes: 1419/clusterfuzz-testcase-minimized-6108700873850880 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `78aa93807b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	4e5543571a	avcodec/webp: Update canvas size in vp8_lossy_decode_frame() as in vp8_lossless_decode_frame() Fixes: 1407/clusterfuzz-testcase-minimized-6044604124102656 Fixes: 1420/clusterfuzz-testcase-minimized-6059927359455232 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `72810d20b7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	6f4e69d661	avcodec/webp: Factor update_canvas_size() out Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c4f63b78b7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	1cdc9447f4	avcodec/cllc: Check prefix Fixes: runtime error: left shift of 1610706944 by 1 places cannot be represented in type 'int' Fixes: 1421/clusterfuzz-testcase-minimized-6239947507892224 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `62c5949bec`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	528fb0b27d	avcodec/rscc: Check pixel_size for overflow Fixes: 1509/clusterfuzz-testcase-minimized-5129419876204544 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `934572c5c3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	e964d47439	avcodec/dds: Fix runtime error: left shift of 210 by 24 places cannot be represented in type 'int' Fixes: 1510/clusterfuzz-testcase-minimized-5826231746428928 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `afb4632cc3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	0d3efe30b5	avcodec/mpeg4videodec: Clear sprite wraping on unsupported cases in VOP decode Fixes: Integer overflow Fixes: 1572/clusterfuzz-testcase-minimized-4578773729017856 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `467677769a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	c1aa23caae	avcodec/ac3dec: Fix: runtime error: index -1 out of bounds for type 'INTFLOAT [2]' It seems dual mono with a LFE channel is not forbidden Fixes: 1570/clusterfuzz-testcase-minimized-6455337349545984 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c55e637072`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	d8082e5e6c	avcodec/hqxdsp: Fix runtime error: signed integer overflow: -196264 * 11585 cannot be represented in type 'int' Fixes: 1568/clusterfuzz-testcase-minimized-5944868608147456 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b923213276`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	993671b570	avcodec/g723_1dec: Fix LCG type Fixes: 1567/clusterfuzz-testcase-minimized-5693653555085312 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f2c539d350`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	d5ac8a296a	libswscale/tests/swscale: Fix uninitialized variables Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7796f29065`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	536275b673	avcodec/ffv1dec: Fix runtime error: signed integer overflow: 1550964438 + 1550964438 cannot be represented in type 'int' Fixes: 1559/clusterfuzz-testcase-minimized-5048096079740928 Fixes: 1560/clusterfuzz-testcase-minimized-6011037813833728 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8630b2cd36`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	6d2a00d0f1	avcodec/webp: Fix signedness in prefix_code check Fixes: out of array read Fixes: 1557/clusterfuzz-testcase-minimized-6535013757616128 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8c5cd1c9d3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	d792783f56	avcodec/svq3: Fix runtime error: signed integer overflow: 169 * 12717677 cannot be represented in type 'int' Fixes: 1556/clusterfuzz-testcase-minimized-5027865978470400 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `86b1b0d33d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	536e29d4cf	avcodec/mlpdec: Check that there is enough data for headers Fixes: out of array access Fixes: 1541/clusterfuzz-testcase-minimized-6403410590957568 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e3e51f8c14`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	b18a2cbdbf	avcodec/ac3dec: Keep track of band structure It is needed in some corner cases that seem not to be forbidden Fixes: out of array index Fixes: 1538/clusterfuzz-testcase-minimized-4696904925446144 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9351a156de`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	e5abfbf2ab	avcodec/webp: Add missing input padding Fixes: 1536/clusterfuzz-testcase-minimized-5973925404082176 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a3508cc3fe`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	b6c8e47333	avcodec/aacdec_fixed: Fix runtime error: left shift of negative value -1 Fixes: 1535/clusterfuzz-testcase-minimized-5826695535788032 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `26227d9186`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	84e272d4e2	avcodec/aacsbr_template: Do not change bs_num_env before its checked Fixes: 1489/clusterfuzz-testcase-minimized-5075102901207040 Fixes: out of array access Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `87b08ee6d2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	f450115354	avcodec/mlp: Fix multiple runtime error: left shift of negative value -1 Fixes: 1512/clusterfuzz-testcase-minimized-4713846423945216 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `74dc728a2c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	e85a3a1d3e	avcodec/vp8dsp: vp7_luma_dc_wht_c: Fix multiple runtime error: signed integer overflow: -1366381240 + -1262413604 cannot be represented in type 'int' Fixes: 1440/clusterfuzz-testcase-minimized-5785716111966208 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ccce2248bf`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	d5c3132d6f	avcodec/avcodec: Limit the number of side data elements per packet Fixes: 1293/clusterfuzz-testcase-minimized-6054752074858496 See: [FFmpeg-devel] [PATCH] avcodec/avcodec: Limit the number of side data elements per packet Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d5711cb891`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	f224214ae2	avcodec/texturedsp: Fix runtime error: left shift of 255 by 24 places cannot be represented in type 'int' Fixes: 1505/clusterfuzz-testcase-minimized-4561688818876416 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f225003d17`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	bf7bcd803a	avcodec/g723_1dec: Fix runtime error: left shift of negative value -1 Fixes: 1504/clusterfuzz-testcase-minimized-6249212138225664 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c4c0245686`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	9f0f354a97	avcodec/wmv2dsp: Fix runtime error: signed integer overflow: 181 * -17047030 cannot be represented in type 'int' Fixes: 1503/clusterfuzz-testcase-minimized-5369271855087616 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `df640dbbc9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	4476107e3a	avcodec/diracdec: Fix Assertion frame->buf[0] failed at libavcodec/decode.c:610 Fixes: 1487/clusterfuzz-testcase-minimized-6288036495097856 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6899e6e560`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	1147b109b7	avcodec/msmpeg4dec: Check for cbpy VLC errors Fixes: runtime error: left shift of negative value -1 Fixes: 1480/clusterfuzz-testcase-minimized-5188321007370240 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `15e892aad1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	5e23b4a839	avcodec/cllc: Check num_bits Fixes: runtime error: shift exponent -2 is negative Fixes: 1479/clusterfuzz-testcase-minimized-6638493360979968 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2bfd0a9758`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00
Michael Niedermayer	becd83e164	avcodec/cllc: Factor VLC_BITS/DEPTH out, do not use repeated literal numbers Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e717fa1f0a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:23 +02:00

1 2 3 4 5 ...

81219 Commits