FFmpeg

Author	SHA1	Message	Date
Michael Niedermayer	4729204c17	Update for 5.1.4 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> n5.1.4	2023-11-10 00:32:27 +01:00
Michael Niedermayer	49beba036c	avcodec/4xm: Check for cfrm exhaustion Fixes: index -1 out of bounds for type 'CFrameBuffer [100]' Fixes: 63877/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_FOURXM_fuzzer-5854263397711872 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `bb0a684d93`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-10 00:25:38 +01:00
Michael Niedermayer	b49de8dfe6	avformat/mov: Disallow FTYP after streams Fixes: Assertion !c->fc->nb_streams failed at libavformat/mov.c:7799 Fixes: 63875/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-5479178702815232 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `19fcf43131`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-10 00:24:19 +01:00
Frank Plowman	a3440ddec3	doc/html: fix styling issue with Texinfo 7.0 Texinfo 7.0 produces quite different HTML to Texinfo 6.8. Without this change, enumerated option flags (i.e. Possible values of x are...) render as white text on a white background with Texinfo 7.0 and are unreadable. This change removes a style for the selector `.table .table` which causes the background to turn white for these elements. As far as I can tell, it is not actually used anywhere in files generated by Texinfo 6.8. Signed-off-by: Frank Plowman <post@frankplowman.com> (cherry picked from commit `f16900bda2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-09 00:22:34 +01:00
Frank Plowman	db73e0bb1a	doc/html: support texinfo 7.0 Resolves trac ticket #10636 (http://trac.ffmpeg.org/ticket/10636). Texinfo 7.0, released in November 2022, changed the names of various functions. Compiling docs with Texinfo 7.0 resulted in warnings and improperly formatted documentation. More old names appear to have been removed in Texinfo 7.1, released October 2023, which causes docs compilation to fail. This commit addresses the issue by adding logic to switch between the old and new function names depending on the Texinfo version. Texinfo 6.8 produces identical documentation before and after the patch. CC https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1938238.html https://bugs.gentoo.org/916104 Signed-off-by: Frank Plowman <post@frankplowman.com> (cherry picked from commit `f01fdedb69`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-09 00:16:18 +01:00
Michael Niedermayer	e531abaf3c	avfilter/buffersink: fix order of operation with = and <0 Reviewed-by: Sean McGovern <gseanmcg@gmail.com> Reviewed-by: Nicolas George <george@nsup.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c0a18e884c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-03 22:27:37 +01:00
Michael Niedermayer	0f93f8ce2c	tools/target_dec_fuzzer: Adjust threshold for CSCD Fixes: Timeout Fixes: 63362/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_CSCD_fuzzer-4694620065628160 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c2f2bf82c1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-03 22:25:44 +01:00
Michael Niedermayer	26a4846b28	avcodec/dovi_rpu: Use 64 bit in get_us/se_coeff() Fixes: shift exponent 32 is too large for 32-bit type 'int' Fixes: 63151/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-5067531154751488 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2817efbba3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-03 22:25:35 +01:00
Michael Niedermayer	1435f50283	avformat/mov: Check that is_still_picture_avif has no trak based streams Fixes: Assertion failure in mov_read_iloc( in mov_read_iloc()) Fixes: 62866/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-5282997370486784 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `98c2711b58`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-11-03 22:24:54 +01:00
Andreas Rheinhardt	7739dabb89	avformat/matroskadec: Fix declaration-after-statement warnings Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@outlook.com> (cherry picked from commit `37b5f4a1f6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:15 +01:00
Michael Niedermayer	5e71da4ef9	avformat/rtsp: Use rtsp_st->stream_index Fixes: out of array access Fixes: rtpdec_h264.c149/poc Found-by: Hardik Shah of Vehere Reviewed-by: Martin Storsjö <martin@martin.st> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e4d5ac8d7d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:15 +01:00
Michael Niedermayer	4bd4b178bf	avcodec/jpeg2000dec: Check image offset Fixes: left shift of negative value -538967841 Fixes: 62447/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_JPEG2000_fuzzer-6427134337613824 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Tomas Härdin <git@haerdin.se> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `88453250db`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:15 +01:00
Michael Niedermayer	905819d18a	avformat/mxfdec: Check klv offset Fixes: Assertion klv_offset >= mxf->run_in failed at libavformat/mxfdec.c:736 Fixes: 62936/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-5778404366221312.fuzz Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Tomas Härdin <git@haerdin.se> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `70f5fa6325`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:14 +01:00
Sean McGovern	f861a16025	libavutil/ppc/cpu.c: check that AT_HWCAP2 is defined It was not introduced until glibc 2.18. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d799ad2404`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:14 +01:00
Michael Niedermayer	181d6e17e0	avcodec/h2645_parse: Avoid EAGAIN EAGAIN causes an assertion failure when it is returned from the decoder Fixes: Assertion consumed != (-(11)) failed at libavcodec/decode.c:462 Fixes: assertion_IOT_instruction_decode_c_462/poc Found-by: Hardik Shah of Vehere (Dawn Treaders team) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5ddab49d48`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:14 +01:00
Michael Niedermayer	566e0aa8e2	avcodec/xvididct: Make c* unsigned to avoid undefined overflows Fixes: signed integer overflow: 1496950099 + 728014168 cannot be represented in type 'int' Fixes: 62667/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MJPEGB_fuzzer-6511785170305024 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f7e5537dc1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:13 +01:00
Michael Niedermayer	d7f64a78e0	avformat/tmv: Check video chunk size This check matches the audio chunk check Fixes: Timeout Fixes: 62681/clusterfuzz-testcase-minimized-ffmpeg_dem_TMV_fuzzer-5299107876700160 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b79fc70596`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:13 +01:00
Michael Niedermayer	76ee7c7715	avcodec/h264_parser: saturate dts a bit Fixes: signed integer overflow: 0 - -9223372036854775808 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_IO_DEMUXER_fuzzer-6112289464123392 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7fedbc7606`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:13 +01:00
Michael Niedermayer	a563efcfda	avformat/asfdec_f: Saturate presentation time in marker Fixes: signed integer overflow: -9223372036315799520 - 3873890816 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-5009302746431488 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `cedb4736f5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:12 +01:00
Michael Niedermayer	29788ba10e	avformat/xwma: sanity check bits_per_coded_sample Fixes: signed integer overflow: 65312 * 524296 cannot be represented in type 'int' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_XWMA_fuzzer-6595971445555200 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fe6ce28d11`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:12 +01:00
Michael Niedermayer	f15a1d7928	avformat/matroskadec: Check prebuffered_ns for overflow Fixes: signed integer overflow: 9223372036630775808 + 1000000000 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_WEBM_DASH_MANIFEST_fuzzer-5406131992526848 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2d6df3719d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:12 +01:00
Michael Niedermayer	1718baf61c	avformat/wavdec: Check left avio_tell for overflow Fixes: signed integer overflow: 155 + 9223372036854775655 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_W64_fuzzer-5364032278495232 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `929ddef3f4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:11 +01:00
Michael Niedermayer	c01d304a6b	avformat/tta: Better totalframes check Fixes: signed integer overflow: 4 * 740491135 cannot be represented in type 'int' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_TTA_fuzzer-6298893367508992 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5f0d00464a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:11 +01:00
Michael Niedermayer	0c1babaa61	avformat/rpl: Check for number_of_chunks overflow Fixes: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int32_t' (aka 'int') Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_RPL_fuzzer-6086131095830528 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b3c973acbe`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:11 +01:00
Michael Niedermayer	1e239a8b88	avformat/mov: compute absolute dts difference without overflow in mov_find_next_sample() Fixes: signed integer overflow: -9223372036854775808 - 9222726413022000000 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-5959420033761280 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `3508b496e1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:10 +01:00
Michael Niedermayer	283baa7336	avformat/jacosubdec: Check timeres Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `51f0ab8b12`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:10 +01:00
Michael Niedermayer	441d5eca4b	avformat/jacosubdec: avoid signed integer overflows in get_shift() Fixes: signed integer overflow: 22014562800 * 934633746 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_JACOSUB_fuzzer-5189603246866432 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `32447b149f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:10 +01:00
Michael Niedermayer	d35579c12b	avformat/jacosubdec: Factorize code in get_shift() a bit Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6490b9aed6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:09 +01:00
Michael Niedermayer	30b3f2712d	avformat/sbgdec: Check for negative duration or un-representable end pts Fixes: signed integer overflow: 9230955872951340 - -9223372036854775808 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_SBG_fuzzer-6330481893572608 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Nicolas George <george@nsup.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9b00b5734d`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:09 +01:00
Michael Niedermayer	44978c5b83	avcodec/escape124: Do not return random numbers Fixes: out of array access Fixes: 62164/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ESCAPE124_fuzzer-6035022714634240 Fixes: 62164/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ESCAPE124_fuzzer-6422176201572352 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `fe6d46490f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:09 +01:00
Michael Niedermayer	95b2569427	avcodec/apedec: Fix an integer overflow in predictor_update_filter() Fixes: signed integer overflow: -2147483506 + -801380 cannot be represented in type 'int' Fixes: 62164/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_APE_fuzzer-6578985923117056 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `515c0247a3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:08 +01:00
Michael Niedermayer	43c6fabb63	tools/target_dec_fuzzer: Adjust wmapro threshold Fixes: Timeout Fixes: 62266/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMAPRO_fuzzer-5125460729921536 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `bb9f8a1cb7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:08 +01:00
Michael Niedermayer	3817209b6d	avformat/avs: Check if return code is representable Fixes: leak Fixes: 62164/clusterfuzz-testcase-minimized-ffmpeg_dem_AVS_fuzzer-6738814988320768 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `52d666edec`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:08 +01:00
Michael Niedermayer	6e4690ede0	avcodec/lcldec: Make PNG filter addressing match the code afterwards Also update check accordingly Fixes: tickets/10237/mszh_306_306_yuv422_nocompress.avi Fixes: tickets/10237/mszh_306_306_yuv411_nocompress.avi Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d11b8bd0c6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:08 +01:00
Michael Niedermayer	87f556a10c	avformat/westwood_vqa: Check chunk size the type is also changed to int as it is interpreted as int in av_get_packet() Fixes: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' Fixes: 50993/clusterfuzz-testcase-minimized-ffmpeg_dem_WSVQA_fuzzer-6593408795279360 Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_WSVQA_fuzzer-4613908817903616 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Anton Khirnov <anton@khirnov.net> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5c0df3da0b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:07 +01:00
Michael Niedermayer	f43562c38a	avformat/sbgdec: Check for period overflow Fixes: signed integer overflow: 4481246996173000000 - -4778576820000000000 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_SBG_fuzzer-5063670588899328 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Nicolas George <george@nsup.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a9137110ed`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:07 +01:00
Michael Niedermayer	d491053334	avformat/concatdec: Check in/outpoint for overflow Fixes: signed integer overflow: 91542414454000000 - -9154241494546000000 cannot be represented in type 'long' Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_CONCAT_fuzzer-4739147999084544 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Nicolas George <george@nsup.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `dedc78b4b5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:07 +01:00
Michael Niedermayer	b358b080a1	avformat/mxfdec: Remove this_partition Suggested-by: Tomas Härdin <git@haerdin.se> Fixes: 51896/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-5130394286817280 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `442d9412d2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:06 +01:00
Michael Niedermayer	d5f1ecbe24	avcodec/xvididct: Fix integer overflow in idct_row() Fixes: signed integer overflow: 1871429831 + 343006811 cannot be represented in type 'int' Fixes: 61784/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AIC_fuzzer-5372151001120768 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b12444fe72`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:06 +01:00
Michael Niedermayer	0224effb52	avcodec/celp_math: avoid overflow in shift by making gain unsigned we have 1 bit more available alternatively we can clip twice as in the g729 reference Fixes: left shift of 23404 by 17 places cannot be represented in type 'int' Fixes: 61728/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ACELP_KELVIN_fuzzer-6280412547383296 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6580a7b2b2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:06 +01:00
Michael Niedermayer	7be649290e	tools/target_dec_fuzzer: Adjust threshold for rtv1 Fixes: 60499/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_RTV1_fuzzer-5020295866744832 Fixes: Timeout Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9ee87245c5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:05 +01:00
Michael Niedermayer	6c176df7e9	avformat/hls: reduce default max reload to 3 The 1000 did result in the appearance of a never ending reload loop The RFC mandates that "If the client reloads a Playlist file and finds that it has not changed, then it MUST wait for a period of one-half the target duration before retrying." and if it has changed "the client MUST wait for at least the target duration before attempting to reload the Playlist file again" Trying to reload 3 times seems a better default than 1000 given these durations Issue found by: Сергей Колесников Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5f810435c2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:05 +01:00
Michael Niedermayer	ee90868c67	avformat/format: Stop reading data at EOF during probing Issue found by: Сергей Колесников Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `80f6e0378b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:05 +01:00
Michael Niedermayer	3c56b5c3df	avcodec/jpeg2000dec: jpeg2000 has its own lowres option jpeg2000 overrides the global lowres variable with a lowres field called reduction_factor ffmpeg -lowres X causes the reduction_factor to be set ffplay -lowres X causes both lowres and the reduction_factor to be set ossfuss sets only lowres only the ffmpeg variant works. This patch tries to make the other 2 work. Alternative we could just error out if things are inconsistent. More complex restructuring should be limited to the master branch to keep this reasonably easy to backport Fixes: out of array access Fixes: 59672/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_JPEG2000 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c012d1f2bb`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:04 +01:00
Michael Niedermayer	55a00e464c	avcodec/huffyuvdec: avoid undefined behavior with get_vlc2() failure Fixes: left shift of negative value -1 Fixes: 59889/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HUFFYUV_fuzzer-5472742275940352 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `90647a9249`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:04 +01:00
Michael Niedermayer	82f7adf45d	avcodec/cscd: Fix "CamStudio Lossless Codec 1.0" gzip files Fixes: tickets/10241/cscd_1_0_306_306_gzip.avi Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ab7d38f970`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:04 +01:00
Michael Niedermayer	fccc3130c7	avcodec/cscd: Check for CamStudio Lossless Codec 1.0 behavior in end check of LZO files Alternatively the check could be simply made more tolerant Fixes: Ticket10227 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d2a0464fc2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:03 +01:00
Michael Niedermayer	10dfb498ea	avcodec/mpeg4videodec: consider lowres in dest_pcm[] Fixes: out of array access Fixes: 59999/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEG4_fuzzer-5767982157266944 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d48476183f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:03 +01:00
Michael Niedermayer	54d87e4b28	avcodec/hevcdec: Fix undefined memcpy() There is likely a better way to fix this, this is mainly to show the problem Fixes: MC within same frame resulting in overlapping memcpy() Fixes: 60189/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-4992746590175232 Fixes: 61753/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-5022150806077440 Fixes: 58062/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-4717458841010176 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `94bd1796ff`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:03 +01:00
Michael Niedermayer	06ff2bfe0f	avcodec/mpeg4videodec: more unsigned in amv computation Fixes: signed integer overflow: -2147483648 + -1048576 cannot be represented in type 'int' Fixes: 59365/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEG4_fuzzer-642654923954585 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `0adaa90d89`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2023-10-30 00:39:02 +01:00

1 2 3 4 5 ...

107673 Commits