ffmpeg

Author	SHA1	Message	Date
Michael Niedermayer	b00df63465	avformat/libzmq: Improve r redundancy in occured Reviewed-by: "mypopy@gmail.com" <mypopy@gmail.com> (cherry picked from commit e06b1ba7d79ac15f23fb08947949dcfec8bfb408) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	0327a29c93	avfilter/vf_libplacebo: Match AV_OPT_TYPE_FLOAT to dbl Reviewed-by: "mypopy@gmail.com" <mypopy@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 0a3e121798081f40a377951a8c2a847a629ec7e7) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	e509fa78c1	avfilter/vsrc_mandelbrot: Check for malloc failure Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit fbd22504c4148d2a01ccfe38df26c144f56db76b) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	6a32a608dc	avfilter/vf_frei0r: Copy to frame allocated according to frei0r requirements Fixes: issues with non trivial linesize Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit d353909e773ba8a8201fa13d6c35251351dd567a) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	5e821d9143	avfilter/video: Add ff_default_get_video_buffer2() to set specific alignment Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit d74078270198b97fdda258840f0d501a3ffcc693) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-09-01 00:41:28 +02:00
Michael Niedermayer	0af520417b	avformat/genh: Check sample rate Fixes: signed integer overflow: -2515507630940093440 * 4 cannot be represented in type 'long' Fixes: 46318/clusterfuzz-testcase-minimized-ffmpeg_dem_GENH_fuzzer-5009637474172928 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a3d790f1977ed6c326eb93bb61757297a7905dcc) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-08-31 21:35:14 +02:00
Michael Niedermayer	14d8814edc	avformat/demux: Use unsigned to check duration vs duration_text Fixes: signed integer overflow: 9223371898743775808 - -138111000000 cannot be represented in type 'long' Fixes: 46245/clusterfuzz-testcase-minimized-ffmpeg_dem_OGG_fuzzer-5075129786302464 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 6007d5688c8b0efe5bb8489cca3a0e32b2001263) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-08-31 21:35:14 +02:00
Timo Rothenpieler	54e0971edb	avutil/hwcontext_d3d11va: fix texture_infos writes on non-fixed-size pools	2022-07-18 02:13:25 +02:00
Zhao Zhili	7389a49fd3	avcodec/cuviddec: fix null pointer dereference It can happened on error path of cuvid_decode_init(). Signed-off-by: Timo Rothenpieler <timo@rothenpieler.org>	2022-06-26 21:50:30 +02:00
Zhao Zhili	3607d7bbea	avcodec/cuviddec: fix AV1 decoding error cuvidParseVideoData only supports pure OBUs, it reports an unknown error with AV1CodecConfigurationRecord. Check whether extradata is AV1CodecConfigurationRecord and skip the first 4 bytes to fix the issue. The bug is revealed in ffmpeg cmd since 45e3b6a68 and ffd1316e. Signed-off-by: Timo Rothenpieler <timo@rothenpieler.org>	2022-06-26 21:50:28 +02:00
Christopher Degawa	240d82f26e	configure: extend SDL check to accept all 2.x versions sdl2 recently changed their versioning, moving the patch level to minor level `cd7c2f1de7` and have said that they will instead ship sdl3.pc for 3.0.0 Fixes ticket 9768 Signed-off-by: Christopher Degawa <ccom@randomderp.com> Signed-off-by: Gyan Doshi <ffmpeg@gyani.pro>	2022-06-10 13:56:26 +02:00
Timo Rothenpieler	a5ebb3d25e	lavf/tls_mbedtls: add support for mbedtls version 3 - certs.h is gone. Only contains test data, and was not used at all. - config.h is renamed. Was seemingly not used, so can be removed. - MBEDTLS_ERR_SSL_NO_USABLE_CIPHERSUITE is gone, instead MBEDTLS_ERR_SSL_HANDSHAKE_FAILURE will be thrown. - mbedtls_pk_parse_keyfile now needs to be passed a properly seeded RNG. Hence, move the call to after RNG seeding. Signed-off-by: Timo Rothenpieler <timo@rothenpieler.org>	2022-04-27 18:46:14 +02:00
James Almer	b655beb025	fate: update reference files after the recent dash manifest muxer changes Missed in 487b49d8f2e1e81dce86230fc957ca2ee9de00ee. Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit aa0829d834232b13e513fb88b2b9a2b74918e05c)	2022-04-08 16:10:34 -03:00
James Almer	2db2bdabbd	avformat/webmdashenc: fix on-demand profile string Fixes ticket #9596 Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit 487b49d8f2e1e81dce86230fc957ca2ee9de00ee)	2022-04-08 00:05:07 -03:00
James Almer	0d487be837	avcodec/libdav1d: don't depend on the event flags API to init sequence params the first time A bug was found in dav1d <= 1.0.0 where the event flag New Sequence Header would not be signaled for some samples using delayed random access points. It has since been fixed, but nonetheless it's best to ensure the AVCodecContext is filled with parameters when parsing the first frame, regardless of what events were signaled. Fixes ticket #9694. Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit 3e186148ca9ac0c47cec253fdea62b48c9feadd2)	2022-04-07 15:33:19 -03:00
Michael Niedermayer	9687cae2b4	Update for 5.0.1 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> n5.0.1	2022-04-04 00:07:14 +02:00
Michael Niedermayer	70522b7262	avcodec/exr: Avoid signed overflow in displayWindow The inputs are unused except for this computation so wraparound does not give an attacker any extra values as they are already fully controlled Fixes: signed integer overflow: 0 - -2147483648 cannot be represented in type 'int' Fixes: 45820/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EXR_fuzzer-5766159019933696 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 1291568c9834c02413ab5d87762308f15b4ae9c6) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-04-04 00:05:36 +02:00
Michael Niedermayer	1ed490b9dc	avcodec/diracdec: avoid signed integer overflow in global mv Fixes: signed integer overflow: -128275513086 * -76056576 cannot be represented in type 'long' Fixes: 45818/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_DIRAC_fuzzer-5129799149944832 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 7f1279684e8e1e33c78577b7f0265c062e4e6232) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-04-04 00:05:36 +02:00
Michael Niedermayer	9cd9f958eb	avcodec/takdsp: Fix integer overflow in decorrelate_sf() Fixes: signed integer overflow: -101 * 71041254 cannot be represented in type 'int' Fixes: 45938/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_TAK_fuzzer-4687974320701440 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 01d8c887f63bcb1f870034ed441504b3daffc645) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-04-04 00:05:36 +02:00
Michael Niedermayer	89374decf6	avcodec/apedec: fix a integer overflow in long_filter_high_3800() Fixes: signed integer overflow: -2146549696 - 3923884 cannot be represented in type 'int' Fixes: 45907/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_APE_fuzzer-5992380584558592 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit b085b400becb93ccc68d786ab738b1fc50408b89) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-04-04 00:05:36 +02:00
Diederick Niehorster	3010773508	avdevice/dshow: fix regression a1c4929f accidentally undid part of d9a9b4c8, so the bug in ticket #9420 resurfaced. Fixing again. Signed-off-by: Diederick Niehorster <dcnieho@gmail.com> Reviewed-by: Roger Pack <rogerdpack2@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit f125c504d8fece6420bb97767f9e72414c26312a) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-04-04 00:05:36 +02:00
Oneric	482d51884c	avfilter/vf_subtitles: pass storage size to libass Due to a quirk of the ASS format some tags depend on the exact storage resolution of the video, so tell libass via ass_set_storage_size. Reviewed-by: Soft Works <softworkz@hotmail.com> Signed-off-by: James Almer <jamrial@gmail.com>	2022-04-04 00:05:36 +02:00
Andreas Rheinhardt	a50aa980eb	avcodec/vp9_superframe_split_bsf: Don't read inexistent data Fixes: Out of array read Fixes: 45137/clusterfuzz-testcase-minimized-ffmpeg_BSF_VP9_SUPERFRAME_SPLIT_fuzzer-4984270639202304 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com> (cherry picked from commit d311d820a77550740d3b868440e476adaf12a872)	2022-04-01 13:20:56 +02:00
Andreas Rheinhardt	550d70fde3	avcodec/vp9_superframe_split_bsf: Discard invalid zero-sized frames They are invalid in VP9. If any of the frames inside a superframe had a size of zero, the code would either read into the next frame or into the superframe index; so check for the length to stop this. Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com> (cherry picked from commit d20ef30f534151ce749b064034c339562724cc34)	2022-04-01 13:20:56 +02:00
Andreas Rheinhardt	f93ca3a278	avcodec/vp9_superframe_bsf: Check for existence of data before reading it Packets without data need to be handled specially in order to avoid undefined reads. Pass these packets through unchanged in case there are no cached packets* and error out in case there are cached packets: Returning the packet would mess with the order of the packets; if one returned the zero-sized packet before the superframe that will be created from the packets in the cache, the zero-sized packet would overtake the packets in the cache; if one returned the packet later, the packets that complete the superframe will overtake the zero-sized packet. *: This case e.g. encompasses the scenario of updated extradata side-data at the end. Fixes: Out of array read Fixes: 45722/clusterfuzz-testcase-minimized-ffmpeg_BSF_VP9_SUPERFRAME_fuzzer-5173378975137792 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com> (cherry picked from commit c12e8c97b13f33897bd9c6095432c9740504f5c7)	2022-04-01 13:20:56 +02:00
Andreas Rheinhardt	4e61bf403f	avcodec/vp9_raw_reorder_bsf: Check for existence of data before reading it Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com> (cherry picked from commit ab25b6aee6295b6fb77c076c85c89df9f2af08e7)	2022-04-01 13:20:56 +02:00
Pierre-Anthony Lemieux	cffa10a0cb	avformat/imf: fix packet pts, dts and muxing The IMF demuxer does not set the DTS and PTS of packets accurately in all scenarios. Moreover, audio packets are not trimmed when they exceed the duration of the underlying resource. imf-cpl-with-repeat FATE ref file is regenerated. Addresses https://trac.ffmpeg.org/ticket/9611 (cherry picked from commit b0193e26ca32914bdd3d05be5d1f474ca8c52124)	2022-03-31 21:28:42 +10:00
Pierre-Anthony Lemieux	08206484bc	avformat/imf: open resources only when first needed IMF CPLs can reference thousands of files, which can result in system limits for the number of open files to be exceeded. The following patch opens and closes files as needed. Addresses https://trac.ffmpeg.org/ticket/9623 (cherry picked from commit ef0d5245d6fb87e7d92149495b5c21b16974bea7)	2022-03-31 21:28:29 +10:00
Zane van Iperen	afa04c1e9e	avformat/imf: cosmetics s/++i/i++/g Signed-off-by: Zane van Iperen <zane@zanevaniperen.com> (cherry picked from commit 40766ae1da412f7a8f665fd49c0de905f856552e)	2022-03-31 21:28:29 +10:00
Marton Balint	07d953187b	avformat/imf_cpl: do not use filesize when reading XML file Similar to the earlier patch applied to imfdec. Signed-off-by: Marton Balint <cus@passwd.hu> (cherry picked from commit 8a9d3d3dec74568a1a7f226dab3a779cd0bfc079)	2022-03-31 21:28:29 +10:00
Andreas Rheinhardt	2ae18635da	avformat/imfdec: Use proper logcontext Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com> (cherry picked from commit b7a543707f2787bd97b8974c27341899b991d0ff)	2022-03-29 20:03:14 +10:00
Marton Balint	d0e9e8c5d0	avformat/imfdec: do not use filesize when reading XML file Signed-off-by: Marton Balint <cus@passwd.hu> (cherry picked from commit ae690d5cf51d8b1b09f8ed6799041311cfa57a6b)	2022-03-29 20:03:08 +10:00
James Almer	8fd2dc3f2b	doc/utils: add missing 22.2 layout entry Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit 1e24fad8679aee7b6d746c97295856845cd9c6a6)	2022-03-28 20:36:04 -03:00
James Almer	fd4121a0aa	avcodec/av1: only set the private context pix_fmt field if get_pixel_format() succeeds Otherwise get_pixel_format() will not be called when parsing a subsequent Sequence Header in non hwaccel enabled scenarios, allowing frame parsing when it shouldn't. This prevents the scenario seqhdr -> frame_hdr/redundant_frame_hdr -> seqhdr -> redundant_frame_hdr from having the latter redundant frame header parsed as if it was a frame header by the decoder because the former was discarded. Since CBS did not discard it, the latter redundant frame header is output with a zeroed AV1RawFrameHeader struct, which can have undesired results, like division by zero with fields normally guaranteed to be anything else. Fixes: division by zero Fixes: 43769/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AV1_fuzzer-5392562205097984 Fixes: 43950/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AV1_fuzzer-5769210217758720 Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit 5670eddf8cd3907f9c0a9e626b5698d27c81c81b)	2022-03-28 20:36:04 -03:00
Michael Niedermayer	ba595e8d83	avformat/aqtitledec: Skip unrepresentable durations Fixes: signed integer overflow: -5 - 9223372036854775807 cannot be represented in type 'long' Fixes: 45665/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-475618463934054 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit c2d1597a8a6470045a8da241d4f65c81f26c3107) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	518b7474b2	avformat/cafdec: Do not store empty keys in read_info_chunk() Fixes: Timeout Fixes: 45543/clusterfuzz-testcase-minimized-ffmpeg_dem_CAF_fuzzer-5684953164152832 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 7ec28e1d4cef723485f50f7a08859752b79b570c) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	5c1ae6738a	avformat/mxfdec: Do not clear array in mxf_read_strong_ref_array() before writing Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 7aebdb8bf1fc3e09263617a7f49101cba2d43804) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	d63e7c3b39	avformat/mxfdec: Check for avio_read() failure in mxf_read_strong_ref_array() Fixes: 42827/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-4900528511909888 Reviewed-by: Tomas Härdin <tjoppen@acc.umu.se> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 8d6f49cfc339825f3f3f8a910e4bb4c0f822db1f) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	8b13cfcc3c	avformat/mxfdec: Check count in mxf_read_strong_ref_array() Reviewed-by: Tomas Härdin <tjoppen@acc.umu.se> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 3015c556f316d4ab364ed55e8bc97cc0f2cc57a3) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	478bd4c73f	avformat/hls: Check target_duration Fixes: signed integer overflow: 77777777777777 * 1000000 cannot be represented in type 'long long' Fixes: 45545/clusterfuzz-testcase-minimized-ffmpeg_dem_HLS_fuzzer-6438101247983616 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Steven Liu <lingjiujianke@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a8fd3f7fab83e1beea1c441e1a2e538e7aa431a5) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	e35f910591	avcodec/pixlet: Avoid signed integer overflow in scaling in filterfn() Fixes: signed integer overflow: 11494 * 1073741824000000 cannot be represented in type 'long' Fixes: 26586/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_PIXLET_fuzzer-5752633970917376 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 0c1f20c6c858b753effda274b58ef635d1924915) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	ffe1ded457	avformat/matroskadec: Check pre_ns Fixes: division by 0 Fixes: 44615/clusterfuzz-testcase-minimized-ffmpeg_dem_WEBM_DASH_MANIFEST_fuzzer-6681108677263360 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 710e51677a6f3a5c2b37dc31a597957a22a5e531) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	af2913d46f	avcodec/sonic: Use unsigned for predictor_k to avoid undefined behavior Fixes: signed integer overflow: -1094995529 * 24 cannot be represented in type 'int' Fixes: 44436/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SONIC_fuzzer-4874459459223552 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 28008bf95ed9b2ab5945ae6658358ad7c7f1df35) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	debfbad67a	avcodec/libuavs3d: Check ff_set_dimensions() for failure Untested, no testcase Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit e88b99afdffce269e7a6a588948c4e00b86536f6) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	ee16bb81de	avcodec/speexdec: Align some comments Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 6530c240c86adb92a499470002da10742d1a1e6a) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	637bda4cdd	avcodec/speexdec: Use correct doxygen comments Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 487679cc50481c29277fb52601b00b6d2e3178fe) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	780de33f32	avcodec/mjpegbdec: Set buf_size Fixes: Timeout Fixes: 45170/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MJPEGB_fuzzer-5874820431085568 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	49f8f8ba20	avformat/matroskadec: Use rounded down duration in get_cue_desc() check Floating point is evil, it would be better if duration was not a double Fixes: Infinite loop Fixes: 45123/clusterfuzz-testcase-minimized-ffmpeg_dem_WEBM_DASH_MANIFEST_fuzzer-6725052291219456 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit bd3a03db9aef72ee36a7cc964171e9f52967f4bc) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	849a20343d	avcodec/argo: Check packet size Fixes: Timeout Fixes: 45052/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ARGO_fuzzer-6033489206575104 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 1bed27acefaab1b4c1813b8adc6468ca952a43f3) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00
Michael Niedermayer	95322e0767	avcodec/g729_parser: Check channels Fixes: signed integer overflow: 10 * 808464428 cannot be represented in type 'int' Fixes: assertion failure Fixes: ticket9651 Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 757da974b21833529cc41bdcc9684c29660cdfa8) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2022-03-28 23:18:56 +02:00

... 2 3 4 5 6 ...

105398 Commits