- 24 Mar, 2020 1 commit
-
-
Andreas Rheinhardt authored
Surprisingly neither GCC nor Clang did this transformation on their own. Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@gmail.com>
-
- 17 Mar, 2019 1 commit
-
-
Michael Niedermayer authored
Fixes: Timeout (11sec -> 3sec) Fixes: 13218/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_DFA_fuzzer-5661074316066816 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>
-
- 19 Apr, 2018 1 commit
-
-
Michael Niedermayer authored
The headers from where the dimensions are read in actual files are limited to 16bit per component. Fixes: Timeout Fixes: 6305/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_DFA_fuzzer-4824270749302784 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>
-
- 13 Aug, 2017 1 commit
-
-
Diego Biurrun authored
DDS1 chunks are decoded in 2x2 blocks, odd chunk width or height is not allowed in that case. Also ensure that the decode buffer is big enough for all blocks being processed. Bug-Id: CVE-2017-9992 CC: libav-stable@libav.org
-
- 18 May, 2017 1 commit
-
-
Michael Niedermayer authored
avcodec/dfa: Fix: runtime error: signed integer overflow: -14202 * 196877 cannot be represented in type 'int' Fixes: 1657/clusterfuzz-testcase-minimized-4710000079405056 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>
-
- 06 May, 2017 1 commit
-
-
Michael Niedermayer authored
Fixes: 1368/clusterfuzz-testcase-minimized-4507293276176384 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>
-
- 05 May, 2017 1 commit
-
-
Michael Niedermayer authored
Fixes out of array access Fixes: 1345/clusterfuzz-testcase-minimized-6062963045695488 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>
-
- 01 Feb, 2017 1 commit
-
-
Anton Khirnov authored
-
- 27 Jul, 2015 1 commit
-
-
Vittorio Giovara authored
Express bitfields more simply. Signed-off-by: Vittorio Giovara <vittorio.giovara@gmail.com>
-
- 22 Mar, 2014 1 commit
-
-
Diego Biurrun authored
-
- 03 Oct, 2013 1 commit
-
-
Diego Biurrun authored
-
- 04 May, 2013 1 commit
-
-
Michael Niedermayer authored
The reimplementation by Libav does not prevent out of array writes, even though it looks like it does at a quick glance. No FFmpeg releases are affected by this See: d1c95d2c 3623589e 740ebe46 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
- 15 Apr, 2013 1 commit
-
-
Michael Niedermayer authored
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
- 09 Apr, 2013 1 commit
-
-
Kostya Shishkov authored
-
- 07 Apr, 2013 1 commit
-
-
Paul B Mahol authored
Sample & pseudo code provided by Vladimir "VAG" Gneushev. Signed-off-by: Paul B Mahol <onemda@gmail.com>
-
- 04 Apr, 2013 2 commits
-
-
Michael Niedermayer authored
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
Anton Khirnov authored
This can happen when the number of skipped lines is not consistent with the number of coded lines. Reported-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind CC: libav-stable@libav.org
-
- 13 Mar, 2013 1 commit
-
-
Clément Bœsch authored
Coccinelle profile used: @@ expression r, ctx, f, loglevel, str, flags; @@ -if ((r = ff_get_buffer(ctx, f, flags)) < 0) { - av_log(ctx, loglevel, str); - return r; -} +if ((r = ff_get_buffer(ctx, f, flags)) < 0) + return r; @@ expression r, ctx, f, loglevel, str; @@ -if ((r = ff_reget_buffer(ctx, f)) < 0) { - av_log(ctx, loglevel, str); - return r; -} +if ((r = ff_reget_buffer(ctx, f)) < 0) + return r; @@ expression r, ctx, f, loglevel, str, flags; @@ -if ((r = ff_thread_get_buffer(ctx, f, flags)) < 0) { - av_log(ctx, loglevel, str); - return r; -} +if ((r = ff_thread_get_buffer(ctx, f, flags)) < 0) + return r; ...along with some manual patches for the remaining ones.
-
- 08 Mar, 2013 1 commit
-
-
Anton Khirnov authored
-
- 04 Dec, 2012 2 commits
-
-
Anton Khirnov authored
It's got_frame, not data size
-
Anton Khirnov authored
It will be useful in the upcoming transition to refcounted AVFrames.
-
- 25 Oct, 2012 1 commit
-
-
Diego Biurrun authored
The function is used elsewhere and does not belong with the LZO code.
-
- 23 Oct, 2012 2 commits
-
-
Mans Rullgard authored
Since the requirement for output padding has been lifted, we can use av_memcpy_backptr() here as well. Signed-off-by: Mans Rullgard <mans@mansr.com>
-
Diego Biurrun authored
Signed-off-by: Mans Rullgard <mans@mansr.com>
-
- 14 Oct, 2012 1 commit
-
-
Michael Niedermayer authored
Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
- 08 Oct, 2012 1 commit
-
-
Anton Khirnov authored
-
- 29 Sep, 2012 3 commits
-
-
Anton Khirnov authored
Fixes CVE-2012-2798 CC:libav-stable@libav.org
-
Michael Niedermayer authored
The values are checked in the wraper function used to call this code. This was introduced by: ee715f49Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
Anton Khirnov authored
Fixes CVE-2012-2786.
-
- 07 Aug, 2012 1 commit
-
-
Anton Khirnov authored
-
- 06 May, 2012 2 commits
-
-
Kostya Shishkov authored
-
Kostya Shishkov authored
-
- 13 Apr, 2012 2 commits
-
-
Michael Niedermayer authored
Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
Michael Niedermayer authored
Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michaelni@gmx.at>
-
- 06 Apr, 2012 1 commit
-
-
Martin Storsjö authored
Also break some long lines, remove codec function placeholder comments and add spaces in sample/pixel format lists. Signed-off-by: Martin Storsjö <martin@martin.st>
-
- 13 Mar, 2012 1 commit
-
-
Paul B Mahol authored
Protects from overreads. Signed-off-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Ronald S. Bultje <rsbultje@gmail.com>
-
- 28 Jan, 2012 1 commit
-
-
Reimar Döffinger authored
Previously the decoder would raise an error. The end result is the same, the time stamps only change because regression tests create time stamps incorrectly. Signed-off-by: Reimar Döffinger <Reimar.Doeffinger@gmx.de>
-
- 12 Nov, 2011 2 commits
-
-
Carl Eugen Hoyos authored
-
Carl Eugen Hoyos authored
The palette had a blue cast.
-
- 29 Jul, 2011 1 commit
-
-
Anton Khirnov authored
It's more readable and less prone to breakage.
-