[FFmpeg-devel] [PATCH 1/2] avcodec/g2meet: Check if adjusted pixel was on the stack

[Tomas Härdin]

mån 2019-09-09 klockan 22:16 +0200 skrev Michael Niedermayer:
> This basically checks if a pixel that was coded with prediction
> and residual could have been stored using a previous case.
> This avoids basically a string of 0 symbols stored in less than
> 50 bytes to hit a O(n²) codepath.
> 
> Fixes: Timeout (too slow to wait -> immedeatly)
> Fixes: 8668/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_G2M_fuzzer-4895946310680576

go2unpleasantplaces indeed

Something tells me there are more ways than this to hit that codepath,
and I've made my feelings about hacks like this known already.

/Tomas