[FFmpeg-cvslog] avformat/mpc8: clear buffer padding area

Michael Niedermayer git at videolan.org
Thu Dec 26 00:13:46 CET 2013


ffmpeg | branch: master | Michael Niedermayer <michaelni at gmx.at> | Mon Dec 23 18:09:58 2013 +0100| [e33b6ccfa782c6e04bcc5ef1b5138ad2a923f620] | committer: Michael Niedermayer

avformat/mpc8: clear buffer padding area

Fixes use of uninitialized memory
Fixes: msan_uninit-mem_7fa6a48cd1d5_8853_sv8_notags.mpc
Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind
Signed-off-by: Michael Niedermayer <michaelni at gmx.at>

> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e33b6ccfa782c6e04bcc5ef1b5138ad2a923f620
---

 libavformat/mpc8.c |    2 ++
 1 file changed, 2 insertions(+)

diff --git a/libavformat/mpc8.c b/libavformat/mpc8.c
index 0e9baaa..502eaff 100644
--- a/libavformat/mpc8.c
+++ b/libavformat/mpc8.c
@@ -157,6 +157,8 @@ static void mpc8_parse_seektable(AVFormatContext *s, int64_t off)
     if(!(buf = av_malloc(size + FF_INPUT_BUFFER_PADDING_SIZE)))
         return;
     avio_read(s->pb, buf, size);
+    memset(buf+size, 0, FF_INPUT_BUFFER_PADDING_SIZE);
+
     init_get_bits(&gb, buf, size * 8);
     size = gb_get_v(&gb);
     if(size > UINT_MAX/4 || size > c->samples/1152){



More information about the ffmpeg-cvslog mailing list