[FFmpeg-devel] [PATCH 15/30] avcodec/ivi: Fix segfault on allocation error
Andreas Rheinhardt
andreas.rheinhardt at gmail.com
Tue Sep 15 10:39:45 EEST 2020
If allocating the tiles array for indeo 4/5 fails, the context is in an
inconsistent state, because the counter for the number of tiles is > 0.
This will lead to a segfault when freeing the tiles' substructures.
Fix this by setting the number of tiles to zero if the allocation was
unsuccessfull.
Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt at gmail.com>
---
libavcodec/ivi.c | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/libavcodec/ivi.c b/libavcodec/ivi.c
index c5c50fb5c1..c10984e83e 100644
--- a/libavcodec/ivi.c
+++ b/libavcodec/ivi.c
@@ -442,8 +442,10 @@ av_cold int ff_ivi_init_tiles(IVIPlaneDesc *planes,
av_freep(&band->tiles);
band->tiles = av_mallocz_array(band->num_tiles, sizeof(IVITile));
- if (!band->tiles)
+ if (!band->tiles) {
+ band->num_tiles = 0;
return AVERROR(ENOMEM);
+ }
/* use the first luma band as reference for motion vectors
* and quant */
--
2.25.1
More information about the ffmpeg-devel
mailing list