ffmpeg

Author	SHA1	Message	Date
Fredrik Hubinette	74104d2dc0	avformat/mov: Check size of STSC allocation Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a6fdd75fe6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	066c657376	avcodec/vc2enc: Clear coef_buf on allocation Fixes: Use of uninitialized memory Fixes: assertion failure Reviewed-by: <atomnuker> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6d00905f81`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	aac7ca7a36	avcodec/h264dec: Fix potential array overread add padding before scantable arrays See: `522d850e68` Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `380b48fb9f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	96fe37a339	avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu Fixes: out of array read Fixes: 3516/attachment-311488.dat Found-by: Insu Yun, Georgia Tech. Tested-by: wuninsu@gmail.com Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `58cf31cee7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	b3067f95c9	avcodec/aacpsdsp_template: Fix integer overflows in ps_decorrelate_c() Fixes: runtime error: signed integer overflow: 1939661764 - -454942263 cannot be represented in type 'int' Fixes: 3191/clusterfuzz-testcase-minimized-5688798451073024 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2afe05402f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	8be48f1c9a	avcodec/aacdec_fixed: Fix undefined shift Fixes: runtime error: left shift of negative value -801112064 Fixes: 3492/clusterfuzz-testcase-minimized-5784775283441664 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fca198fb5b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	c1d31ccfac	avcodec/mdct_*: Fix integer overflow in addition in RESCALE() Fixes: runtime error: signed integer overflow: 1219998458 - -1469874012 cannot be represented in type 'int' Fixes: 3443/clusterfuzz-testcase-minimized-5369987105554432 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `770c934fa1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	c8027878d0	avcodec/snowdec: Fix integer overflow in header parsing Fixes: 3984/clusterfuzz-testcase-minimized-5265759929368576 Fixes: runtime error: signed integer overflow: -1085585801 + -1094995529 cannot be represented in type 'int' Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c897a92858`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	286e3bf174	avcodec/cngdec: Fix integer clipping Fixes: runtime error: value -36211.7 is outside the range of representable values of type 'short' Fixes: 2992/clusterfuzz-testcase-6649611793989632 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `51090133b3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	19fb467fcb	avcodec/sbrdsp_fixed: Fix integer overflow in shift in sbr_hf_g_filt_c() Fixes: runtime error: shift exponent 66 is too large for 64-bit type 'long long' Fixes: 3642/clusterfuzz-testcase-minimized-5443853801750528 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `981e99ab99`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	67208cf992	avcodec/aacsbr_fixed: Fix division by zero in sbr_gain_calc() Fixes: 3642/clusterfuzz-testcase-minimized-5443853801750528 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7d1dec4668`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	56a56c0cb5	avutil/softfloat: Add FLOAT_MIN Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e34fe61bf4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	d3264c496a	avcodec/h264idct_template: Fix integer overflows in ff_h264_idct8_add() Fixes: runtime error: signed integer overflow: -503316480 + -2013265038 cannot be represented in type 'int' Fixes: 3805/clusterfuzz-testcase-minimized-6578427831255040 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e131b8cedb`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	ffa2d60ac5	avcodec/xan: Check for bitstream end in xan_huffman_decode() Fixes: Timeout Fixes: 3707/clusterfuzz-testcase-6465922706440192 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4b51437dcc`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	4a47195d2a	avcodec/exr: fix undefined shift in pxr24_uncompress() Fixes: runtime error: left shift of 255 by 24 places cannot be represented in type 'int' Fixes: 3787/clusterfuzz-testcase-minimized-5728764920070144 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `66f0c958bf`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Luca Barbato	912448efc1	avformat: Free the internal codec context at the end Avoid a use after free in avformat_find_stream_info. (cherry picked from commit `9e4a5eb51b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	6fb7e324fe	avcodec/h264idct_template: Fix integer overflows in ff_h264_idct8_add() Fixes: runtime error: signed integer overflow: 924846844 + 1457520640 cannot be represented in type 'int' Fixes: 3416/clusterfuzz-testcase-minimized-6125587682820096 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2b739e1cb8`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	faa84a0c06	avcodec/xan: Improve overlapping check Fixes: memcpy-param-overlap Fixes: 3612/clusterfuzz-testcase-minimized-6393461273001984 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e8fafef1db`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	02612c3e3e	avcodec/aacdec_fixed: Fix integer overflow in apply_dependent_coupling_fixed() Fixes: runtime error: signed integer overflow: 623487 * 536870912 cannot be represented in type 'int' Fixes: 3594/clusterfuzz-testcase-minimized-4650622935629824 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `41d96af2a7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	18fbf2622c	avcodec/aacdec_fixed: Fix integer overflow in predict() Fixes: runtime error: signed integer overflow: -2110708110 + -82837504 cannot be represented in type 'int' Fixes: 3547/clusterfuzz-testcase-minimized-6009386439802880 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0976752420`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	3d6ffa2bb5	avcodec/jpeglsdec: Check for end of bitstream in ls_decode_line() Fixes: 1773/clusterfuzz-testcase-minimized-4832523987189760 Fixes: Timeout Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f80224ed19`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Niedermayer	b33d302195	avcodec/jpeglsdec: Check ilv for being a supported value Fixes: 1773/clusterfuzz-testcase-minimized-4832523987189760 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fe533628b9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-12-30 21:11:31 +01:00
Michael Roitzsch	ca47e9ffdc	lavfi/af_pan: fix sign handling in channel coefficient parser When a channel formula ends with a subtraction, the next formula will otherwise have its first coefficient negated. (cherry picked from commit `4f4e19914d`)	2017-11-22 10:42:07 +01:00
Rostislav Pehlivanov	a7aac19933	vc2enc_dwt: pad the temporary buffer by the slice size Since non-Haar wavelets need to look into pixels outside the frame, we need to pad the buffer. The old factor of two seemed to be a workaround that fact and only padded to the left and bottom. This correctly pads by the slice size and as such reduces memory usage and potential exploits. Reported by Liu Bingchang. Ideally, there should be no temporary buffer but the encoder is designed to deinterleave the coefficients into the classical wavelet structure with the lower frequency values in the top left corner. Signed-off-by: Rostislav Pehlivanov <atomnuker@gmail.com> (cherry picked from commit `3228ac730c`)	2017-11-09 02:10:51 +00:00
Fredrik Hubinette	670d3189e9	avformat/id3v2: fix leak in chapter parsing Reviewed-on: https://chromium-review.googlesource.com/439405 Reviewed-by: Dale Curtis <dalecurtis@chromium.org> Signed-off-by: James Almer <jamrial@gmail.com> n3.3.5	2017-10-26 13:51:03 -03:00
Michael Niedermayer	60b385a5bf	Update for 3.3.5 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:36:17 +02:00
Michael Niedermayer	b33434ec62	tests/ffserver.regression.ref: update checksums to what ffserver currently produces Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `431eccd61e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	0ccb27e094	ffserver: Fix off by 1 error in path Code suggested by ubitux Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `617f0c65e1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	e8fd32b69f	avcodec/snowdec: Check mv_scale Fixes: runtime error: signed integer overflow: 2 * -1094995530 cannot be represented in type 'int' Fixes: 3512/clusterfuzz-testcase-minimized-4812747210489856 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `393d6fc739`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	20fd9217d8	avcodec/pafvideo: Check for bitstream end in decode_0() Fixes: Timeout Fixes: 3529/clusterfuzz-testcase-5057068371279872 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9c85329cd0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	48933f28c2	avcodec/ffv1dec: Fix out of array read in slice counting Fixes: test-201710.mp4 Found-by: 连一汉 <lianyihan@360.cn> and Zhibin Hu Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c20f4fcb74`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	d13d3feba2	avcodec/dirac_dwt: Fix integer overflow in COMPOSE_53iL0() Fixes: runtime error: signed integer overflow: 2147483646 + 2 cannot be represented in type 'int' Fixes: 3485/clusterfuzz-testcase-minimized-4940429332054016 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `bdee75a4e7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	aa6c44c333	avcodec/mpeg_er: Clear mcsel in mpeg_er_decode_mb() Fixes out of array read Should fix: 3516/clusterfuzz-testcase-minimized-4608518562775040 (not reprodoceable) Found-by: Insu Yun, Georgia Tech. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `127a362630`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	0009272f94	avcodec/mpeg4videodec: Use 64 bit intermediates for sprite delta Fixes: runtime error: signed integer overflow: -104713 * 65536 cannot be represented in type 'int' Fixes: 3453/clusterfuzz-testcase-minimized-5555554657239040 Fixes: 3528/clusterfuzz-testcase-minimized-6283628420005888 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e38f280fec`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	7cc854ce15	avcodec/x86/lossless_videoencdsp: Fix warning: signed dword value exceeds bounds Add () to regsize define Suggested-by: Henrik Gramner <henrik@gramner.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `26ea142658`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	0a231e7dd3	avcodec/x86/lossless_videoencdsp: Fix handling of small widths Fixes out of array access Fixes: crash-huf.avi Regression since: `6b41b44149` This could also be fixed by adding checks in the C code that calls the dsp Found-by: Zhibin Hu and 连一汉 <lianyihan@360.cn> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `df62b70de8`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	ab43bc50c0	avcodec/truemotion2: Fix integer overflows in tm2_high_chroma() Fixes: runtime error: signed integer overflow: -1408475220 + -1408475220 cannot be represented in type 'int' Fixes: 3336/clusterfuzz-testcase-minimized-5656839179993088 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `44874b4f5e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	4768b30b5b	avcodec/aacdec_template: Clear tns present flag on error Fixes: 3444/clusterfuzz-testcase-minimized-6270352105668608 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `dcf9bae4a9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	6b9ffcdb2b	avcodec/proresdec2: SKIP_BITS() does not work with len=32 Fixes: invalid shift Fixes: 3482/clusterfuzz-testcase-minimized-5446915875405824 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c37138e01a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	520daf8c0e	avcodec/hevcdsp_template: Fix undefined shift Fixes: runtime error: left shift of negative value -255 Fixes: 3373/clusterfuzz-testcase-minimized-5604083912146944 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fbdab6eca7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	c54317a17e	avcodec/jpeg2000: Check that codsty->log2_prec_widths/heights has been initialized Fixes: OOM Fixes: 2225/clusterfuzz-testcase-minimized-5505632079708160 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `64e034da95`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	ab845587d1	avcodec/takdec: Fix integer overflow in decode_lpc() Fixes: runtime error: signed integer overflow: 16748560 + 2143729712 cannot be represented in type 'int' Fixes: 3202/clusterfuzz-testcase-minimized-4988291642294272 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5d31f03a02`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	4bc16930ef	avcodec/proresdec2: Check bits in DECODE_CODEWORD(), fixes invalid shift Fixes: runtime error: shift exponent 42 is too large for 32-bit type 'unsigned int' Fixes: 3410/clusterfuzz-testcase-minimized-5313377960198144 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4f5eaf0b59`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	b5b52c0ca7	avcodec/takdec: Fix integer overflows in decode_subframe() Fixes: runtime error: signed integer overflow: -1562477869 + -691460395 cannot be represented in type 'int' Fixes: 3196/clusterfuzz-testcase-minimized-4528307146063872 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3dabb9c69d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	940659036f	avcodec/dirac_dwt: Fix integer overflow in COMPOSE_FIDELITYi() Fixes: runtime error: signed integer overflow: 161 13872281 cannot be represented in type 'int' Fixes: 3295/clusterfuzz-testcase-minimized-4738998142500864 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `67da2685e0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	6d1ebb9def	avcodec/ffv1dec: Fix integer overflow in read_quant_table() Fixes: runtime error: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' Fixes: 3361/clusterfuzz-testcase-minimized-5065842955911168 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d00fc952b6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	4e341bd904	avcodec/svq3: Fix overflow in svq3_add_idct_c() Fixes: runtime error: signed integer overflow: 2147392585 + 524288 cannot be represented in type 'int' Fixes: 3348/clusterfuzz-testcase-minimized-4809500517203968 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2c933c5168`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
Michael Niedermayer	bf6cd808be	avcodec/pngdec: Clean up on av_frame_ref() failure Fixes: memleak Fixes: 3203/clusterfuzz-testcase-minimized-4514553595428864 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: James Almer <jamrial@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5480e82d77`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-10-26 17:34:42 +02:00
James Almer	9f7042f9cd	avcodec/extract_extradata: return an error when buffer allocation fails ret is 0 by default. Reviewed-by: Mark Thompson <sw@jkqxz.net> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `7bae17e37a`)	2017-09-13 17:26:52 -03:00
James Almer	e3a1c0491f	avcodec/hevc_ps: improve check for missing default display window bitstream Fixes ticket #6644 Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `c9a1cd08ea`) n3.3.4	2017-09-11 22:27:05 -03:00

... 2 3 4 5 6 ...

85717 Commits