[FFmpeg-devel] [PATCH 1/4] avcodec/loco: Fix integer overflow with large values from loco_get_rice()

Michael Niedermayer michael at niedermayer.cc
Tue Jul 7 19:22:55 EEST 2020


On Tue, Jun 30, 2020 at 10:28:29PM +0200, Michael Niedermayer wrote:
> Fixes: signed integer overflow: 155 + 2147483647 cannot be represented in type 'int'
> Fixes: 23421/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_LOCO_fuzzer-5652849097965568
> 
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
>  libavcodec/loco.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)

will apply

[...]
-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

Any man who breaks a law that conscience tells him is unjust and willingly 
accepts the penalty by staying in jail in order to arouse the conscience of 
the community on the injustice of the law is at that moment expressing the 
very highest respect for law. - Martin Luther King Jr
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20200707/5487617c/attachment.sig>


More information about the ffmpeg-devel mailing list