[FFmpeg-devel] [PATCH 7/8] avformat/mov: Disallow a single unspecified size tag on probing

Sat Feb 6 19:23:00 EET 2021

This avoids accepting bizare constructs like a mdat at position 0 and size 0

Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
---
 libavformat/mov.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libavformat/mov.c b/libavformat/mov.c
index 5440078459..2df6762ec9 100644
--- a/libavformat/mov.c
+++ b/libavformat/mov.c
@@ -7117,7 +7117,7 @@ static int mov_probe(const AVProbeData *p)
         if (size == 1 && offset + 16 > (unsigned int)p->buf_size) {
             size = AV_RB64(p->buf+offset + 8);
             minsize = 16;
-        } else if (size == 0) {
+        } else if (size == 0 && offset) {
             size = p->buf_size - offset;
         }
         if (size < minsize) {
-- 
2.17.1

