[FFmpeg-devel] [PATCH 2/2] wavpack: Fix 32-bit clipping
Derek Buitenhuis
derek.buitenhuis at gmail.com
Fri Dec 16 19:32:06 CET 2011
In the case that (frame_flags & 0x03) == 3, hybrid_maxclip
may have had a signed integer overflow.
Signed-off-by: Derek Buitenhuis <derek.buitenhuis at gmail.com>
---
libavcodec/wavpack.c | 4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/libavcodec/wavpack.c b/libavcodec/wavpack.c
index 9f1ce34..8d9b804 100644
--- a/libavcodec/wavpack.c
+++ b/libavcodec/wavpack.c
@@ -408,7 +408,7 @@ static inline int wv_get_value_integer(WavpackFrameContext *s, uint32_t *crc, in
bit = (((S + bit) << s->shift) - bit) << s->post_shift;
if(s->hybrid)
- bit = av_clip(bit, -s->hybrid_maxclip, s->hybrid_maxclip - 1);
+ bit = av_clip(bit, -s->hybrid_maxclip - 1, s->hybrid_maxclip);
return bit;
}
@@ -798,7 +798,7 @@ static int wavpack_decode_block(AVCodecContext *avctx, int block_no,
s->joint = s->frame_flags & WV_JOINT_STEREO;
s->hybrid = s->frame_flags & WV_HYBRID_MODE;
s->hybrid_bitrate = s->frame_flags & WV_HYBRID_BITRATE;
- s->hybrid_maxclip = 1 << ((((s->frame_flags & 0x03) + 1) << 3) - 1);
+ s->hybrid_maxclip = (1LL << ((((s->frame_flags & 0x03) + 1) << 3) - 1)) - 1;
s->post_shift = 8 * (bpp-1-(s->frame_flags&0x03)) + ((s->frame_flags >> 13) & 0x1f);
s->CRC = AV_RL32(buf); buf += 4;
if(wc->mkv_mode)
--
1.7.7.3
More information about the ffmpeg-devel
mailing list