[FFmpeg-cvslog] avcodec/pnmdec: Use 64bit for input size check
Michael Niedermayer
git at videolan.org
Sun Jul 21 18:17:43 EEST 2024
ffmpeg | branch: master | Michael Niedermayer <michael at niedermayer.cc> | Thu Jul 18 21:12:54 2024 +0200| [3faadbe2a27e74ff5bb5f7904ec27bb1f5287dc8] | committer: Michael Niedermayer
avcodec/pnmdec: Use 64bit for input size check
Fixes: out of array read
Fixes: poc3
Reported-by: VulDB CNA Team
Found-by: CookedMelon
Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3faadbe2a27e74ff5bb5f7904ec27bb1f5287dc8
---
libavcodec/pnmdec.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/libavcodec/pnmdec.c b/libavcodec/pnmdec.c
index a6945549bd..59013ada49 100644
--- a/libavcodec/pnmdec.c
+++ b/libavcodec/pnmdec.c
@@ -262,7 +262,7 @@ static int pnm_decode_frame(AVCodecContext *avctx, AVFrame *p,
break;
case AV_PIX_FMT_GBRPF32:
if (!s->half) {
- if (avctx->width * avctx->height * 12 > s->bytestream_end - s->bytestream)
+ if (avctx->width * avctx->height * 12LL > s->bytestream_end - s->bytestream)
return AVERROR_INVALIDDATA;
scale = 1.f / s->scale;
if (s->endian) {
More information about the ffmpeg-cvslog
mailing list