[FFmpeg-devel] [PATCH 1/3] avcodec/rasc: Check uncompressed dlta size

Michael Niedermayer michael at niedermayer.cc
Wed Jan 30 23:43:03 EET 2019


On Wed, Jan 23, 2019 at 02:10:18AM +0100, Michael Niedermayer wrote:
> We assume that if the compressed size is bigger than if each byte is encoded in a single raw packet
> that the data is invalid.
> 
> Fixes: Out of memory
> Fixes: 12208/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_RASC_fuzzer-5648916473708544
> 
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
>  libavcodec/rasc.c | 2 ++
>  1 file changed, 2 insertions(+)

will apply patchset

[...]
-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

If a bugfix only changes things apparently unrelated to the bug with no
further explanation, that is a good sign that the bugfix is wrong.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: not available
URL: <http://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20190130/0f46e5e1/attachment.sig>


More information about the ffmpeg-devel mailing list