ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	1a387f1ce6	avcodec/jpeg2000dwt: Fix integer overflows in sr_1d53() Fixes: 5918/clusterfuzz-testcase-minimized-5120505435652096 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `793347a545`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	205689ae8a	avcodec/diracdec: Use int64 in global mv to prevent overflow Fixes: runtime error: signed integer overflow: 361 * -6295541 cannot be represented in type 'int' Fixes: 5911/clusterfuzz-testcase-minimized-6450382197751808 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `cbcbefdc3b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	af5c12c029	avcodec/dxtory: Remove code that corrupts dimensions Fixes: Timeout Fixes: 5796/clusterfuzz-testcase-minimized-5206729085157376 Does someone have a valid sample that triggers this path ? Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3748746a4d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	93a16aebf2	avcodec/dirac_dwt_template: Fix Integer overflow in horizontal_compose_dd137i() Fixes: 5894/clusterfuzz-testcase-minimized-5315325420634112 Fixes: runtime error: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `647fa49495`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	37cd7f3375	avcodec/hevcdec: Check luma/chroma_log2_weight_denom Fixes: signed integer overflow: 3 + 2147483647 cannot be represented in type 'int' Fixes: 5888/clusterfuzz-testcase-minimized-5634701067812864 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f82dd4c09b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	1a4f8de03d	avcodec/jpeg2000dec: Use av_image_check_size2() Fixes: OOM Fixes: 5733/clusterfuzz-testcase-minimized-4906757966004224 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `01370b31ac`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	2a85ead5a3	avcodec/vp8: Check for bitstream end before vp7_fade_frame() Fixes: Timeout Fixes: 5653/clusterfuzz-testcase-5497680018014208 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `de675648ce`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	659a23e89f	avcodec/exr: Check remaining bits in last get code loop Fixes: runtime error: shift exponent -7 is negative Fixes: 3902/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EXR_fuzzer-6081926122176512 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `dd8351b118`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	519d48c861	avutil/common: Fix integer overflow in av_clip_uint8_c() and av_clip_uint16_c() Fixes: 5567/clusterfuzz-testcase-minimized-5769966247739392 Fixes: runtime error: negation of -2147483648 cannot be represented in type 'int'; cast to an unsigned type to negate this value to itself Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ab6f571ef7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	878fc42a90	avcodec/h264_cabac: Tighten allowed coeff_abs range Fixes: integer overflows Reported-by: "Xiaohan Wang (王消寒)" <xhwang@chromium.org> Based on limits in "8.5 Transform coefficient decoding process and picture construction process prior to deblocking filter process" Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f26a63c4ee`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Xiaohan Wang	e8fb74c0c9	avcodec/h264_cavlc: Set valid qscale value in ff_h264_decode_mb_cavlc() When ff_h264_decode_mb_cavlc() failed due to wrong sl->qscale values, e.g. dquant out of range, set the qscale to be a valid value before returning -1 and exiting the function. The qscale value can be used later e.g. in loop filter. BUG=806122 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `71f39de2a5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	76a886dae3	avcodec/vp3: Error out on invalid num_coeffs in unpack_vlcs() This fixes a hypothetical integer overflow Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f2318aee8c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	f03616d2a4	avcodec/mpeg4videodec: Ignore multiple VOL headers Fixes: Ticket7005 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `63a4bdbf3b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	0df3ad79c7	avcodec/vp3: Check eob_run Fixes: out of array access Fixes: 5919/clusterfuzz-testcase-minimized-5859311382167552 Fixes: special case for theora (untested due to lack of sample) Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `570023eab3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	65fc03589f	avcodec/pafvideo: Check allocated frame size Fixes: OOM Fixes: 5549/clusterfuzz-testcase-minimized-5390553567985664 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `66acb63028`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	55e6c6b5fe	avcodec/scpr: Fix reading a pixel before the first Fixes: 5540/clusterfuzz-testcase-minimized-6122458273808384 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0fb33a8289`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Nekopanda	66881cf2b5	avcodec/mpeg2dec: Fix field selection for skipped macroblocks For B field pictures, the spec says, > The prediction shall be made from the field of the same parity as the field being predicted. I did it. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8b154cb3e9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	838d02fcff	avcodec/huffyuvdec: Check input buffer size Fixes: Timeout Fixes: 5487/clusterfuzz-testcase-4696837035393024 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `08c220d26c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	0322f78177	avcodec/utvideodec: Fix bytes left check in decode_frame() Fixes: out of array read Fixes: poc-2017.avi Found-by: GwanYeong Kim <gy741.kim@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `118e1b0b33`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	4d4656e8cd	avcodec/wavpack: Fix integer overflow in FFABS Fixes: negation of -2147483648 cannot be represented in type 'int'; cast to an unsigned type to negate this value to itself Fixes: 5396/clusterfuzz-testcase-minimized-6558555529281536 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8e50bd61e4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	a97335b1b3	avcodec/aacsbr_fixed: Fix overflows in rounding in sbr_hf_assemble() Fixes: runtime error: signed integer overflow: 2052929346 + 204817098 cannot be represented in type 'int' Fixes: 5275/clusterfuzz-testcase-minimized-5367635958038528 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b1bef755f6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	d07a0ae1af	avcodec/exr: Fix memleaks in decode_header() Fixes: 4793/clusterfuzz-testcase-minimized-5707366629638144 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0a2560a977`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	55f9c21363	avcodec/dirac_dwt: Fix several integer overflows Fixes: runtime error: signed integer overflow: -2146071175 + -268479557 cannot be represented in type 'int' Fixes: 5237/clusterfuzz-testcase-minimized-4569895275593728 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fe1e6c06d0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	38384cdd99	avcodec/indeo5: Do not leave frame_type set to an invalid value Fixes: null pointer dereference Fixes: 5264/clusterfuzz-testcase-minimized-4621956621008896 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2ff9f17851`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	4019c2a67c	avcodec/hevc_ps: Check log2_sao_offset_scale_* Fixes: 4868/clusterfuzz-testcase-minimized-6236542906400768 Fixes: runtime error: shift exponent 126 is too large for 32-bit type 'int' Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4a75a75c62`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Aman Gupta	bb5748ec9d	avcodec/hevc_ps: extract SPS fields required for hvcC construction Signed-off-by: Aman Gupta <aman@tmm1.net> Reviewed-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	90cfaff0bb	avcodec/mpeg4videodec: Avoid possibly aliasing violating casts Found-by: kierank Reviewed-by: Kieran Kunhya <kieran618@googlemail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d4967c04e0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	093c80747b	avcodec/get_bits: Document the return code of get_vlc2() Found-by: kierank Reviewed-by: Kieran Kunhya <kieran618@googlemail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4a94ff4ccd`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	61a911d007	avcodec/mpeg4videodec: Check mb_num also against 0 The spec implies that 0 is invalid in addition to the existing checks Found-by: <kierank> Reviewed-by: Kieran Kunhya <kieran618@googlemail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `05f4703a16`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	d74839d793	avfilter/vf_transpose: Fix used plane count. Fixes out of array access Fixes: poc.mp4 Found-by: GwanYeong Kim <gy741.kim@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c6939f65a1`) (cherry picked from commit `3f621455d6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	aec30d0da9	avcodec/hevc_cabac: Check prefix so as to avoid invalid shifts in coeff_abs_level_remaining_decode() I suspect that this can be limited tighter, but i failed to find anything in the spec that would confirm that. Fixes: 4833/clusterfuzz-testcase-minimized-5302840101699584 Fixes: runtime error: left shift of 134217730 by 4 places cannot be represented in type 'int' Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a026a3efae`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	dbe356a009	avcodec/mjpegdec: Fix integer overflow in DC dequantization Fixes: runtime error: signed integer overflow: -65535 * 65312 cannot be represented in type 'int' Fixes: 4900/clusterfuzz-testcase-minimized-5769019744321536 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1bfc1aa004`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	ce82d4722b	avcodec/dxtory: Fix bits left checks Fixes: Timeout Fixes: 4863/clusterfuzz-testcase-6347354178322432 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6e1a167c55`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	fb27cebc93	avcodec/hevc_cabac: Move prefix check in coeff_abs_level_remaining_decode() down Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `94d4237a7a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	162bbc22e2	avcodec/truemotion2: Fix integer overflow in TM2_RECALC_BLOCK() Fixes: signed integer overflow: 1477974040 - -1877995504 cannot be represented in type 'int' Fixes: 4861/clusterfuzz-testcase-minimized-4570316383715328 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `56a53340ed`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	60bc7a6ec0	avcodec/snowdec: Fix integer overflow before htaps check Fixes: runtime error: signed integer overflow: -1094995529 * 2 cannot be represented in type 'int' Fixes: 4828/clusterfuzz-testcase-minimized-5100849937252352 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2eecf3cf8e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	a9fb2f8c80	avcodec/ulti: Check number of blocks at init Fixes: Timeout Fixes: 4832/clusterfuzz-testcase-4699096590843904 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `725353525e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	488a6ae7e5	avcodec/jpeg2000: Check sum of sizes of band->prec before allocating Fixes: OOM Fixes: 4810/clusterfuzz-testcase-minimized-6034253235093504 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6887e41243`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	eecb0ecf51	avcodec/ac3dec_fixed: Fix integer overflow in scale_coefs() Fixes: runtime error: signed integer overflow: 2147483520 + 128 cannot be represented in type 'int' Fixes: 4800/clusterfuzz-testcase-minimized-6110372403609600 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a1f38c7589`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Nikolas Bowe	68f9a9fe4b	avformat/lrcdec: Fix memory leak in lrc_read_header() Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ef5994e09d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Nikolas Bowe	980fe1b7a6	avformat/matroskadec: Fix float-cast-overflow undefined behavior in matroska_parse_tracks() Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e07649e618`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Carl Eugen Hoyos	68ca7aefb2	configure: bump year Happy new year! (cherry picked from commit `bddf31ba75`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	7965ffbeb1	avcodec/utils: Avoid hardcoding duplicated types in sizeof() Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `860d991fcd`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	d8e501de42	avcodec/arm/sbrdsp_neon: Use a free register instead of putting 2 things in one Fixes high pitched shriek Fixes: 25420848_1478428308873746_4255813235963330560_n.mp4 Reported-by: Dale Curtis <dalecurtis@google.com> Reviewed-by: Dale Curtis <dalecurtis@chromium.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7dbbb75ee3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	014ba5c737	avcodec/h264addpx_template: Fixes integer overflows Fixes: signed integer overflow: 512 + 2147483491 cannot be represented in type 'int' Fixes: 4780/clusterfuzz-testcase-minimized-4709066174627840 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d6945aeee4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	bf7715fd29	avcodec/dirac_dwt: Fix overflows in COMPOSE_HAARiH0/COMPOSE_HAARiL0 Fixes: 4830/clusterfuzz-testcase-minimized-5255392054476800 Fixes: signed integer overflow: 2147483646 - -7 cannot be represented in type 'int' Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0e62a23734`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	347744121b	avcodec/diracdec: Fix integer overflow with quant Fixes: signed integer overflow: 2 + 2147483646 cannot be represented in type 'int' Fixes: 4792/clusterfuzz-testcase-minimized-6322450775146496 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `eaa9317589`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	ba2f8469ba	avcodec/opus_parser: Check payload_len in parse_opus_ts_header() Fixes: clusterfuzz-testcase-minimized-6134545979277312 Fixes: crbug 797469 Reported-by: Matt Wolenetz <wolenetz@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1bcd7fefcb`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	e4afafaa7e	avcodec/jpeg2000dsp: Fix integer overflows in ict_int() Fixes: signed integer overflow: 46802 * -71230 cannot be represented in type 'int' Fixes: 4756/clusterfuzz-testcase-minimized-4812495563784192 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b3192c64b5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00
Michael Niedermayer	d81bfc042c	avcodec/h264_slice: Do not attempt to render into frames already output Fixes: null pointer dereference Fixes: 4698/clusterfuzz-testcase-minimized-5096956322906112 This testcase does not reproduce the issue before `03b82b3ab9` Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `476665d4de`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-04-13 00:35:15 +02:00

1 2 3 4 5 ...

85717 Commits