avcodec/h264_slice: Limit max_contexts when slice_context_count is initialized

Fixes out of array access Fixes: 1430e9c43fae47a24c179c7c54f94918/signal_sigsegv_421427_2049_f2192b6829ab6e0eefcb035329c03c60.264 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

avcodec/h264_slice: Limit max_contexts when slice_context_count is initialized
Fixes out of array access Fixes: 1430e9c43fae47a24c179c7c54f94918/signal_sigsegv_421427_2049_f2192b6829ab6e0eefcb035329c03c60.264 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
4ea4d2f4 · Michael Niedermayer · 9c35b8e2 · 4ea4d2f4
Commit 4ea4d2f4 authored Nov 24, 2015 by Michael Niedermayer
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 0 deletions

h264_slice.c libavcodec/h264_slice.c +1 -0

No files found.
--- a/libavcodec/h264_slice.c
+++ b/libavcodec/h264_slice.c
@@ -1097,6 +1097,7 @@ static int h264_slice_header_init(H264Context *h)
        nb_slices = max_slices;
    }
    h->slice_context_count = nb_slices;
+    h->max_contexts = FFMIN(h->max_contexts, nb_slices);
    if (!HAVE_THREADS || !(h->avctx->active_thread_type & FF_THREAD_SLICE)) {
        ret = ff_h264_slice_context_init(h, &h->slice_ctx[0]);