- 08 Jul, 2019 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 13 Nov, 2018 1 commit
-
-
Michael Niedermayer authored
Fixes: Timeout Fixes: 10972/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_FLAC_fuzzer-5707569640243200 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 30 Aug, 2018 2 commits
-
-
James Almer authored
-
Paul B Mahol authored
Signed-off-by:
Paul B Mahol <onemda@gmail.com>
-
- 24 Jun, 2017 1 commit
-
-
Jun Zhao authored
add set_ue_golomb_long to support up to 2^32-2. Reviewed-by:
Mark Thompson <sw@jkqxz.net> Reviewed-by:
Michael Niedermayer <michael@niedermayer.cc> Signed-off-by:
Jun Zhao <jun.zhao@intel.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 23 Jun, 2017 1 commit
-
-
Jun Zhao authored
set_ue_golomb just support 2^16 - 2 at most, becase this function call put_bits, and put_bits just support write up to 31 bits, when write 32 bit in put_bits, it's will overwrite the bit buffer, and the default assert level is 0, the av_assert2(n <= 31 && value < (1U << n)) in put_bits can not be trigger runtime. Signed-off-by:
Jun Zhao <jun.zhao@intel.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 13 Jun, 2017 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 11 May, 2017 1 commit
-
-
Michael Niedermayer authored
Fixes: 1481/clusterfuzz-testcase-minimized-5264379509473280 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpegSigned-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 06 May, 2017 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 13 Apr, 2017 1 commit
-
-
Luca Barbato authored
The loop always consumes the bit read and the new bitstream reader can read 0 bits just fine.
-
- 31 Jan, 2017 1 commit
-
-
Diego Biurrun authored
-
- 08 Dec, 2016 1 commit
-
-
Michael Niedermayer authored
Fixes slow loops on fuzzed data Fixes: 245/fuzz-3-ffmpeg_AUDIO_AV_CODEC_ID_FLAC_fuzzer Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpegSigned-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 15 Nov, 2016 1 commit
-
-
Diego Biurrun authored
The former is a GNU extension while the latter is C99.
-
- 17 Aug, 2016 1 commit
-
-
Diego Biurrun authored
-
- 25 May, 2016 1 commit
-
-
Diego Biurrun authored
-
- 22 May, 2016 1 commit
-
-
Diego Biurrun authored
It will not be provided by the new bit reader anyway.
-
- 29 Dec, 2015 1 commit
-
-
Mark Harris authored
get_ue_golomb() cannot decode values larger than 8190 (the maximum value that can be golomb encoded in 25 bits) and produces the error "Invalid UE golomb code" if a larger value is encountered. Use get_ue_golomb_long() instead (which supports 63 bits, up to 4294967294) when valid h264/hevc values can exceed 8190. This updates decoding of the following values: (maximum) first_mb_in_slice 36863* for level 5.2 abs_diff_pic_num_minus1 131071 difference_of_pic_nums_minus1 131071 idr_pic_id 65535 recovery_frame_cnt 65535 frame_packing_arrangement_id 4294967294 frame_packing_arrangement_repetition_period 16384 display_orientation_repetition_period 16384 An alternative would be to modify get_ue_golomb() to handle encoded values of up to 49 bits as was done for get_se_golomb() in a92816c4. In that case get_ue_golomb() could continue to be used for all of these except frame_packing_arrangement_id. Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 14 Dec, 2015 1 commit
-
-
Andreas Cadhalpun authored
Also correct the check to reject log < 7, because UPDATE_CACHE only guarantees 25 meaningful bits. This fixes undefined behavior: runtime error: shift exponent is negative Testing with START/STOP timers in get_ue_golomb, one for the first branch (A) and one for the second (B), shows that there is practically no slowdown, e.g. for the cavs decoder: With the check in the B branch: 629 decicycles in get_ue_golomb B, 4194260 runs, 44 skips 433 decicycles in get_ue_golomb A,268434102 runs, 1354 skips Without the check: 624 decicycles in get_ue_golomb B, 4194273 runs, 31 skips 433 decicycles in get_ue_golomb A,268434203 runs, 1253 skips Since the B branch is executed far less often than the A branch, this change is negligible, even more so for the h264 decoder, where the ratio B/A is a lot smaller. Fixes: mozilla bug 1230239 Fixes: fbeb8b2c7c996e9b91c6b1af319d7ebc/asan_heap-oob_195450f_2743_e8856ece4579ea486670be2b236099a0.bit Found-by: Tyson Smith Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Reviewed-by:
Michael Niedermayer <michael@niedermayer.cc> Signed-off-by:
Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>
-
- 19 May, 2015 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 17 May, 2015 2 commits
-
-
Michael Niedermayer authored
No testcase is known, nor any case where such huge values would occur Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 22 Apr, 2015 1 commit
-
-
James Almer authored
Reviewed-by:
Michael Niedermayer <michaelni@gmx.at> Signed-off-by:
James Almer <jamrial@gmail.com>
-
- 11 Mar, 2015 1 commit
-
-
Michael Niedermayer authored
Found-by: Clang -fsanitize=shift Reported-by:
Thierry Foucu <tfoucu@google.com> Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 07 Mar, 2015 1 commit
-
-
Zeng Zhaoxiu authored
Signed-off-by:
Zeng Zhaoxiu <zhaoxiu.zeng@gmail.com> Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 13 Feb, 2015 1 commit
-
-
zhaoxiu.zeng authored
Signed-off-by:
Zeng Zhaoxiu <zhaoxiu.zeng@gmail.com> Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 05 Dec, 2014 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 02 Sep, 2014 1 commit
-
-
Diego Biurrun authored
The HAVE_ prefix is reserved for macros set by configure.
-
- 29 Mar, 2014 1 commit
-
-
Martin Storsjö authored
This was only used in hevc muxing code so far. This makes the return values match what get_se_golomb returns for the same bitstream reader instances. The logic for producing a signed golomb code out of an unsigned one was based on the corresponding code in get_se_golomb, which operated directly on the bitstream reader buffer - not on the equivalent return value from get_ue_golomb. CC: libav-stable@libav.org Signed-off-by:
Martin Storsjö <martin@martin.st>
-
- 10 Mar, 2014 1 commit
-
-
Luca Barbato authored
Useful in libavformat mostly.
-
- 24 Oct, 2013 1 commit
-
-
Vittorio Giovara authored
Signed-off-by:
Diego Biurrun <diego@biurrun.de>
-
- 23 Oct, 2013 1 commit
-
-
Vittorio Giovara authored
Signed-off-by:
Diego Biurrun <diego@biurrun.de>
-
- 09 Feb, 2013 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 18 Jan, 2013 1 commit
-
-
Michael Niedermayer authored
Fixes invalid right shift in fate-cavs Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 08 Dec, 2012 1 commit
-
-
Janne Grunau authored
This prevents undefined behaviour of signed left shift if the coded value is larger than 2^31. Large values are most likely invalid and caused errors or by feeding random. Validate every use of svq3_get_ue_golomb() and changed the place there the return value was compared with negative numbers. dirac.c was clean, fixed rv30 and svq3.
-
- 01 Oct, 2012 1 commit
-
-
Diego Biurrun authored
-
- 27 Sep, 2012 1 commit
-
-
Diego Biurrun authored
-
- 12 Jun, 2012 1 commit
-
-
Justin Ruggles authored
Fixes infinite loop in FLAC decoding in case of a truncated bitstream due to the safe bitstream reader returning 0's at the end. Fixes Bug 310. CC:libav-stable@libav.org
-
- 06 Jun, 2012 1 commit
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michaelni@gmx.at>
-
- 24 Feb, 2012 1 commit
-
-
Ronald S. Bultje authored
Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org
-
- 17 Feb, 2012 1 commit
-
-
Ronald S. Bultje authored
Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org
-