[FFmpeg-devel] [libav-devel] [PATCH] mpegpicture: use coded_width/coded_height to allocate frame
Andreas Cadhalpun
andreas.cadhalpun at googlemail.com
Tue Nov 8 00:48:38 EET 2016
On 07.11.2016 22:52, Luca Barbato wrote:
> On 07/11/2016 22:32, Andreas Cadhalpun wrote:
>> This fixes a heap-buffer-overflow in ff_er_frame_end when decoding mss2 with
>> coded_width/coded_height larger than width/height.
>>
>> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com>
>> ---
>> libavcodec/mpegpicture.c | 12 ++++++------
>> 1 file changed, 6 insertions(+), 6 deletions(-)
>>
>
> Do you have a sample to look at the output in that specific case?
Yes, and the output looks similar to most fuzzed samples: like garbage.
Best regards,
Andreas
More information about the ffmpeg-devel
mailing list