[FFmpeg-devel] [PATCH 1/6] avcodec/wnv1: Check for width =1

Andreas Rheinhardt andreas.rheinhardt at outlook.com
Sun Jul 3 09:38:15 EEST 2022


Michael Niedermayer:
> The decoder only outputs pixels for width >1 images, fail early
> 
> Fixes: Timeout
> Fixes: 48298/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WNV1_fuzzer-6198626319204352
> 
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
>  libavcodec/wnv1.c | 3 +++
>  1 file changed, 3 insertions(+)
> 
> diff --git a/libavcodec/wnv1.c b/libavcodec/wnv1.c
> index 0cf2181a48..f1223493fe 100644
> --- a/libavcodec/wnv1.c
> +++ b/libavcodec/wnv1.c
> @@ -129,6 +129,9 @@ static av_cold int decode_init(AVCodecContext *avctx)
>  
>      ff_thread_once(&init_static_once, wnv1_init_static);
>  
> +    if (avctx->width <= 1)
> +        return AVERROR_INVALIDDATA;
> +
>      return 0;
>  }
>  

If you want to fail early, then why don't you do so before initializing
the static data?

- Andreas


More information about the ffmpeg-devel mailing list