ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	c641782f7a	oavformat/avidec: Check offset in odml Fixes: signed integer overflow: 9223372036854775807 + 8 cannot be represented in type 'long' Fixes: 38787/clusterfuzz-testcase-minimized-ffmpeg_dem_AVI_fuzzer-4859845799444480 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 255a7b423ed5e07536bdc72e993056daa4efe009) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-10-17 21:34:53 +02:00
Michael Niedermayer	2ec7e09a0c	avformat/avidec: fix position overflow in avi_load_index() Fixes: signed integer overflow: 9223372033098784808 + 4294967072 cannot be represented in type 'long' Fixes: 29102/clusterfuzz-testcase-minimized-ffmpeg_dem_AVI_fuzzer-6732488912273408 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 527821a2dd6f19d9a4d2abe05833346ae86c66c6) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-10-17 21:34:53 +02:00
Michael Niedermayer	1414037c8c	avformat/avidec: Check for dv streams before using priv_data in parse ##dc/##wb Fixes: null pointer dereference Fixes: 31588/clusterfuzz-testcase-minimized-ffmpeg_dem_AVI_fuzzer-6165716135968768 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Andreas Rheinhardt <andreas.rheinhardt@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit f733688d30021587c3f3a1b280d6ece8b04f26ff) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-10-17 21:34:53 +02:00
Michael Niedermayer	4518df7937	avformat/avidec: Use 64bit in get_duration() Fixes: signed integer overflow: 2147483424 + 8224 cannot be represented in type 'int' Fixes: 29619/clusterfuzz-testcase-minimized-ffmpeg_dem_AVI_fuzzer-5191424373030912 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a0ceb0cdd41b56241697cd8f83e22cdb4822d2d9) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-10-17 21:34:53 +02:00
Michael Niedermayer	b222d99f4d	avformat/avidec: dv does not support palettes Fixes: memleak Fixes: 26937/clusterfuzz-testcase-minimized-ffmpeg_dem_AVI_fuzzer-5763003338981376 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 1b373b41d940e3058cdfb3d17703e23ed665353c) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-10-17 21:34:53 +02:00
Michael Niedermayer	39adb15034	avformat/avidec: Fix io_fsize overflow Fixes: signed integer overflow: 7958120835074169528 * 9 cannot be represented in type 'long long' Fixes: 23382/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-6230683226996736 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit cf0c700b0c25f5d9fe50dd27086a06812822f11a) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2021-10-17 21:34:53 +02:00
Michael Niedermayer	60a912e005	avformat/avidec: Avoid integer overflow in NI switch check Fixes: signed integer overflow: 0 - -9223372036854775808 cannot be represented in type 'long' Fixes: Ticket8149 Found-by: Suhwan Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 347920ca2102d762e4713f101a2e75811791e2b3) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2020-04-23 21:29:01 +02:00
Michael Niedermayer	3b5645a729	avformat/avidec: Fix integer overflow in cum_len check Fixes: signed integer overflow: 3775922176 * 4278190080 cannot be represented in type 'long' Fixes: Chromium bug 791237 Reported-by: Matt Wolenetz <wolenetz@google.com> Reviewed-by: Matt Wolenetz <wolenetz@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 06e092e7819b9437da32925200e7c369f93d82e7) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2018-07-10 01:18:52 +02:00
Michael Niedermayer	bb7df22328	avformat/avidec: Limit formats in gab2 to srt and ass/ssa This prevents part of one exploit leading to an information leak Found-by: Emil Lerner and Pavel Cheremushkin Reported-by: Thierry Foucu <tfoucu@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a5d849b149ca67ced2d271dc84db0bc95a548abb) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-06-05 23:16:54 +02:00
Tobias Rapp	3f3ee3e62f	avformat/avidec: skip odml master index chunks in avi_sync Fixes pts gaps when reading AVI files > 256GiB generated by FFmpeg. Signed-off-by: Tobias Rapp <t.rapp@noa-archive.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 6d579d7c1bdc4126955cae7f385208e455685986) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2017-02-08 21:17:51 +01:00
Michael Niedermayer	239f75d6c3	avformat/avidec: Check nb_streams in read_gab2_sub() Fixes null pointer dereference Fixes: 1/null_point.avi Found-by: 连一汉 <lianyihan@360.cn> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 2679ad4773aa356e7c3da5c68bc81f02a194617f) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2016-10-05 03:06:45 +02:00
Michael Niedermayer	a772613100	avformat/avidec: Remove ancient assert This assert can with crafted files fail, a warning is already printed for this case. Fixes assertion failure Fixes:1/assert.avi Found-by: 连一汉 <lianyihan@360.cn> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 14bac7e00d72eac687612d9b125e585011a56d4f) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2016-10-05 03:06:45 +02:00
Michael Niedermayer	8ddeae57ae	avformat/avidec: Fix infinite loop in avi_read_nikon() Fixes: 360/test.poc Found-by: 连一汉 <lianyihan@360.cn> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit e4e4a9cad7f21593d4bcb1f2404ea0d373c36c43) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2016-09-18 00:18:11 +02:00
Michael Niedermayer	90b27febc6	avformat/avidec: Detect index with too short entries Fixes Ticket5498 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit d08f2c172fd2baab022f0118f49e5b2852a2d463) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2016-08-15 18:54:34 +02:00
Michael Niedermayer	7ec05ae969	avformat/avidec: Workaround broken initial frame Fixes Ticket4851 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 3e2ef00394b8079e93835d47c993868229f07502)	2015-10-09 21:15:15 +02:00
Michael Niedermayer	0d2a62d257	avformat/avidec: Simplify dshow_block_align based special case detection Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-08-12 22:51:40 +02:00
Michael Niedermayer	5f501f066e	avformat/avidec: Disable AVSTREAM_PARSE_TIMESTAMPS for flac The flac parser does not support it, its also not needed. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-08-12 04:03:37 +02:00
Michael Niedermayer	254ff6e6bf	avformat/avidec: Add flac to the dshow_block_align exception list Fixes Ticket4758 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-08-12 03:11:15 +02:00
Michael Niedermayer	29d147c94d	Merge commit '059a934806d61f7af9ab3fd9f74994b838ea5eba' * commit '059a934806d61f7af9ab3fd9f74994b838ea5eba': lavc: Consistently prefix input buffer defines Conflicts: doc/examples/decoding_encoding.c libavcodec/4xm.c libavcodec/aac_adtstoasc_bsf.c libavcodec/aacdec.c libavcodec/aacenc.c libavcodec/ac3dec.h libavcodec/asvenc.c libavcodec/avcodec.h libavcodec/avpacket.c libavcodec/dvdec.c libavcodec/ffv1enc.c libavcodec/g2meet.c libavcodec/gif.c libavcodec/h264.c libavcodec/h264_mp4toannexb_bsf.c libavcodec/huffyuvdec.c libavcodec/huffyuvenc.c libavcodec/jpeglsenc.c libavcodec/libxvid.c libavcodec/mdec.c libavcodec/motionpixels.c libavcodec/mpeg4videodec.c libavcodec/mpegvideo.c libavcodec/noise_bsf.c libavcodec/nuv.c libavcodec/nvenc.c libavcodec/options.c libavcodec/parser.c libavcodec/pngenc.c libavcodec/proresenc_kostya.c libavcodec/qsvdec.c libavcodec/svq1enc.c libavcodec/tiffenc.c libavcodec/truemotion2.c libavcodec/utils.c libavcodec/utvideoenc.c libavcodec/vc1dec.c libavcodec/wmalosslessdec.c libavformat/adxdec.c libavformat/aiffdec.c libavformat/apc.c libavformat/apetag.c libavformat/avidec.c libavformat/bink.c libavformat/cafdec.c libavformat/flvdec.c libavformat/id3v2.c libavformat/isom.c libavformat/matroskadec.c libavformat/mov.c libavformat/mpc.c libavformat/mpc8.c libavformat/mpegts.c libavformat/mvi.c libavformat/mxfdec.c libavformat/mxg.c libavformat/nutdec.c libavformat/oggdec.c libavformat/oggparsecelt.c libavformat/oggparseflac.c libavformat/oggparseopus.c libavformat/oggparsespeex.c libavformat/omadec.c libavformat/rawdec.c libavformat/riffdec.c libavformat/rl2.c libavformat/rmdec.c libavformat/rtpdec_latm.c libavformat/rtpdec_mpeg4.c libavformat/rtpdec_qdm2.c libavformat/rtpdec_svq3.c libavformat/sierravmd.c libavformat/smacker.c libavformat/smush.c libavformat/spdifenc.c libavformat/takdec.c libavformat/tta.c libavformat/utils.c libavformat/vqf.c libavformat/westwood_vqa.c libavformat/xmv.c libavformat/xwma.c libavformat/yop.c Merged-by: Michael Niedermayer <michael@niedermayer.cc>	2015-07-27 23:15:19 +02:00
Vittorio Giovara	059a934806	lavc: Consistently prefix input buffer defines Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com>	2015-07-27 15:24:59 +01:00
Michael Niedermayer	bf1fd59c6a	avformat/avidec: Fix demuxing avi with broken index Fixes: genio-avi Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-07-20 02:11:49 +02:00
Michael Niedermayer	ba77fb61f7	Merge commit 'd80811c94e068085aab797f9ba35790529126f85' * commit 'd80811c94e068085aab797f9ba35790529126f85': riff: Use the correct logging context Conflicts: libavformat/asfdec_o.c libavformat/avidec.c libavformat/dxa.c libavformat/matroskadec.c libavformat/mov.c libavformat/riff.h libavformat/riffdec.c libavformat/wavdec.c libavformat/wtvdec.c libavformat/xwma.c Merged-by: Michael Niedermayer <michael@niedermayer.cc>	2015-07-12 15:22:37 +02:00
Luca Barbato	d80811c94e	riff: Use the correct logging context	2015-07-11 18:45:44 +02:00
Michael Niedermayer	488383afd1	avformat/avidec: add mp2 to the list of exceptions instead of generally treating dshow_block_align==1 special Fixes Ticket4552 Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-05-17 01:46:09 +02:00
Michael Niedermayer	73b8155b31	Merge commit '4d0ee4962be7e07cdc038a78008ef2e4e47e5f81' * commit '4d0ee4962be7e07cdc038a78008ef2e4e47e5f81': avi: Validate sample_size Conflicts: libavformat/avidec.c See: ca234639ac49a0dc073ac1f10977979acdb94f97 See: c7369f3a4bd21ea64571c1b0c4fcbf39f8daf68c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2015-05-10 22:20:37 +02:00
Andreas Cadhalpun	4d0ee4962b	avi: Validate sample_size And either error out or set it to 0 if it is negative. CC: libav-stable@libav.org Signed-off-by: Luca Barbato <lu_zero@gentoo.org>	2015-05-09 15:51:31 +02:00
Michael Niedermayer	c7369f3a4b	avformat/avidec: print a warning for negative sample_size Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-05-05 00:04:38 +02:00
Andreas Cadhalpun	ca234639ac	avidec: avoid infinite loop due to negative ast->sample_size If max in clean_index is set to a negative ast->sample_size, the following loop never ends: while (max < 1024) max += max; Thus set ast->sample_size to 0 if it would otherwise be negative. Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-05-05 00:04:38 +02:00
Andreas Cadhalpun	0eec40b713	avidec: check for valid bit_rate range If bit_rate is negative, it can trigger an av_assert2 in av_rescale_rnd. Since av_rescale returns int64_t, but st->codec_bit_rate is int, it can also overflow into a negative value. Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-05-04 21:11:19 +02:00
Michael Niedermayer	8a91ee7837	avformat/avidec: Do not call av_log() per byte, use ff_tlog() This was av_dlog() previously and should not have been changed to av_log() Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-04-20 16:21:42 +02:00
Michael Niedermayer	40d552dae6	Merge commit '1a3eb042c704dea190c644def5b32c9cee8832b8' * commit '1a3eb042c704dea190c644def5b32c9cee8832b8': Replace av_dlog with normal av_log at trace level Conflicts: ffplay.c libavdevice/fbdev_dec.c libavfilter/avfilter.c libavfilter/internal.h libavfilter/setpts.c libavfilter/src_movie.c libavfilter/vf_crop.c libavfilter/vf_drawtext.c libavfilter/vf_fieldorder.c libavformat/assdec.c libavformat/avidec.c libavformat/flvdec.c libavformat/http.c libavformat/ipmovie.c libavformat/isom.c libavformat/mov.c libavformat/mpegenc.c libavformat/mpegts.c libavformat/mpegtsenc.c libavformat/mux.c libavformat/mxfdec.c libavformat/nsvdec.c libavformat/oggdec.c libavformat/r3d.c libavformat/rtspdec.c libavformat/utils.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2015-04-20 03:19:47 +02:00
Vittorio Giovara	1a3eb042c7	Replace av_dlog with normal av_log at trace level This applies to every library where performance is not critical.	2015-04-19 12:41:59 +01:00
Michael Niedermayer	81a6b075bd	avformat/avidec: also print frame_num in debug output Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-03-19 16:36:29 +01:00
Michael Niedermayer	07ca090e81	Merge commit '4326bc364b58e97fc3d89417054a6b7610179a00' * commit '4326bc364b58e97fc3d89417054a6b7610179a00': lavf: Do not list mov-only codecs in riff tags Conflicts: libavformat/Makefile libavformat/avidec.c See: 2e0b5f5c90a4bc1440703ba5e8bf7139ff42f367 Merged-by: Michael Niedermayer <michaelni@gmx.at>	2015-03-17 21:09:43 +01:00
Carl Eugen Hoyos	4326bc364b	lavf: Do not list mov-only codecs in riff tags Instead check for all mov code-points when demuxing avi and print a warning if a video codec is found like this. Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com>	2015-03-17 13:34:22 +00:00
zhaoxiu.zeng	213ddcb029	avformat/avidec: cleanup include Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-03-15 13:03:26 +01:00
zhaoxiu.zeng	bf696e265a	avformat/avidec: use avpriv_find_start_code in avi_read_packet() Signed-off-by: Zeng Zhaoxiu <zhaoxiu.zeng@gmail.com> Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-03-15 13:02:57 +01:00
Carl Eugen Hoyos	2e0b5f5c90	lavf: Do not list mov-only codecs in riff.c. Instead check for all mov code-points when demuxing avi and print a warning if a video codec is found like this. Fixes a regression similar to the one described in ticket #4307.	2015-03-13 08:49:03 +01:00
Michael Niedermayer	8c013a9e55	avformat/avidec: Check avio_read() return before using the results for meta-data Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-03-05 19:38:20 +01:00
Michael Niedermayer	8a048fe6f8	avformat/avidec: initialize header array Fixes use of uninitialized memory in case read fails Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2015-03-05 18:41:03 +01:00
Michael Niedermayer	a0fe1a25fa	Merge commit 'daf8cf358a098a903d59adb6c0d0cc3262a8c93e' * commit 'daf8cf358a098a903d59adb6c0d0cc3262a8c93e': avformat: Don't anonymously typedef structs Conflicts: libavformat/adtsenc.c libavformat/aiffenc.c libavformat/avidec.c libavformat/gif.c libavformat/iff.c libavformat/img2dec.c libavformat/jvdec.c libavformat/matroskadec.c libavformat/udp.c libavformat/wtvdec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2015-02-14 21:07:40 +01:00
Diego Biurrun	daf8cf358a	avformat: Don't anonymously typedef structs	2015-02-14 10:13:47 -08:00
Michael Niedermayer	be023405a7	Merge commit 'f771b3ab5d3c0b763ee356152be550f4121babd0' * commit 'f771b3ab5d3c0b763ee356152be550f4121babd0': avidec: do not export stream_codec_tag Conflicts: libavformat/avidec.c Merged-by: Michael Niedermayer <michaelni@gmx.at>	2015-01-27 16:17:42 +01:00
Anton Khirnov	f771b3ab5d	avidec: do not export stream_codec_tag Handle its only existing use case internally.	2015-01-27 09:13:45 +01:00
Michael Niedermayer	0d7a14e236	avformat/avidec: optimize probe about 2x as fast Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2014-12-23 16:32:26 +01:00
Thomas Volkert	00d7555f34	wavdec: RIFX file format support Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2014-12-18 00:10:35 +01:00
Michael Niedermayer	51b193214d	avformat/avidec: Use av_freep() to avoid leaving stale pointers in memory Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2014-12-15 15:43:14 +01:00
Gabor Nagy	28fc31d78d	avformat/avidec: Do not fail for crazy start times Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2014-12-11 14:59:10 +01:00
Gabor Nagy	ae8168074e	avformat/avidec: Increase dshow_block_align use threshold by 1 Fixes 00.avi Signed-off-by: Michael Niedermayer <michaelni@gmx.at>	2014-12-10 03:18:30 +01:00
Joakim Plate	90411b333d	Allow reading of growing avi files (currently being written) This uses the RIFF header stored size to figure out the expected AVI file size, instead of the actual file. To work fully it requires handling failed avio_seek() instead of assuming they always succeed. Some fate file has been cut off and contains half a frame at the end which previously was not output during demuxing. This frame is now output to encoder, thus the fate diff update. Bug-Id: 261 Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com>	2014-12-08 13:29:33 +00:00

1 2 3 4 5 ...

489 Commits