[FFmpeg-devel] [PATCH 4/6] avformat/cdg: Fix integer overflow in duration computation
Michael Niedermayer
michael at niedermayer.cc
Sun Sep 13 01:56:46 EEST 2020
On Sun, Jul 19, 2020 at 07:42:16PM +0200, Michael Niedermayer wrote:
> Fixes: signed integer overflow: 8398407 * 300 cannot be represented in type 'int'
> Fixes: 23914/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-4702539290509312
>
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
> libavformat/cdg.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
will apply
[...]
--
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
If the United States is serious about tackling the national security threats
related to an insecure 5G network, it needs to rethink the extent to which it
values corporate profits and government espionage over security.-Bruce Schneier
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20200913/b2e1c081/attachment.sig>
More information about the ffmpeg-devel
mailing list