eessppeelllloo/ffmpeg
1
0
Fork 0
mirror of https://git.ffmpeg.org/ffmpeg.git synced 2026-05-08 12:03:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
cd63dab55cde491afd7e7b24197c8745ce6bc71a
ffmpeg/libavcodec/bsf
T
History
Zhao Zhili 89e9486bc3 avcodec/h264_mp4toannexb: Fix heap buffer overflow 
Fixes: out of array write
Fixes: 64407/clusterfuzz-testcase-minimized-ffmpeg_BSF_H264_MP4TOANNEXB_fuzzer-4966763443650560

mp4toannexb_filter counts the number of bytes needed in the first
pass and allocate the memory, then do memcpy in the second pass.
Update sps/pps size in the loop makes the count invalid in the
case of SPS/PPS occur after IDR slice. This patch process in-band
SPS/PPS before the two pass loops.

Signed-off-by: Zhao Zhili <zhilizhao@tencent.com>
2024-03-27 20:04:40 +08:00
..
aac_adtstoasc.c
av1_frame_merge.c
av1_frame_split.c
av1_metadata.c
chomp.c
dca_core.c
dts2pts.c
dump_extradata.c
dv_error_marker.c
eac3_core.c
evc_frame_merge.c
extract_extradata.c
filter_units.c
h264_metadata.c
h264_mp4toannexb.c
avcodec/h264_mp4toannexb: Fix heap buffer overflow
2024-03-27 20:04:40 +08:00
h264_redundant_pps.c
h265_metadata.c
h266_metadata.c
hapqa_extract.c
hevc_mp4toannexb.c
imx_dump_header.c
Makefile
media100_to_mjpegb.c
mjpeg2jpeg.c
mjpega_dump_header.c
movsub.c
mpeg2_metadata.c
mpeg4_unpack_bframes.c
noise.c
null.c
opus_metadata.c
pcm_rechunk.c
avcodec/bsf/pcm_rechunk: add some more supported PCM formats
2024-03-14 01:37:31 +01:00
pgs_frame_merge.c
prores_metadata.c
remove_extradata.c
setts.c
showinfo.c
trace_headers.c
truehd_core.c
vp9_metadata.c
vp9_raw_reorder.c
vp9_superframe_split.c
vp9_superframe.c
vvc_mp4toannexb.c