wrapper/FFmpeg

Author	SHA1	Message	Date
Michael Niedermayer	ed3d433676	avcodec/cabac: Check initial cabac decoder state Fixes integer overflows Fixes: 1430e9c43fae47a24c179c7c54f94918/signal_sigsegv_421427_2340_591e9810c7b09efe501ad84638c9e9f8.264 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Found-by: xiedingbao (Ticket4727) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8000d484b8`) Conflicts: libavcodec/cabac.h	2015-12-14 16:51:00 +01:00
Michael Niedermayer	1258bdf7f0	avcodec/cabac_functions: Fix "left shift of negative value -31767" Fixes: 1430e9c43fae47a24c179c7c54f94918/signal_sigsegv_421427_2340_591e9810c7b09efe501ad84638c9e9f8.264 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Found-by: xiedingbao (Ticket4727) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a1f6b05f52`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-12-14 16:51:00 +01:00
Michael Niedermayer	54e94522b8	avcodec/h264_slice: Limit max_contexts when slice_context_count is initialized Fixes out of array access Fixes: 1430e9c43fae47a24c179c7c54f94918/signal_sigsegv_421427_2049_f2192b6829ab6e0eefcb035329c03c60.264 Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4ea4d2f438`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-12-14 16:51:00 +01:00
Michael Niedermayer	8405b63294	avcodec/vp8: Do not use num_coeff_partitions in thread/buffer setup The variable is not a constant and can lead to race conditions Fixes: repro.webm (not reproducable with FFmpeg alone) Found-by: Dale Curtis <dalecurtis@google.com> Tested-by: Dale Curtis <dalecurtis@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `dabea74d0e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-12-14 16:51:00 +01:00
Michael Niedermayer	e6264f00ad	avcodec/ffv1dec: Clear quant_table_count if its invalid Fixes deallocation of corrupted pointer Fixes: 343dfbe142a38b521ed069dc4ea7c03b/signal_sigsegv_421427_4074_ffb11959610278cd40dbc153464aa254.avi No releases affected Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e04126072e`) Fixes ticket #5052.	2015-12-02 12:03:10 +01:00
Michael Niedermayer	183f580594	avcodec/ffv1dec: Print an error if the quant table count is invalid Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a8b254e436`)	2015-12-02 11:59:00 +01:00
Andrey Utkin	70373bde2d	doc/filters/drawtext: fix centering example Signed-off-by: Andrey Utkin <andrey.od.utkin@gmail.com> Signed-off-by: Lou Logan <lou@lrcd.com> (cherry picked from commit `648b26acc5`) Signed-off-by: Timothy Gu <timothygu99@gmail.com>	2015-12-01 17:32:45 -08:00
Andreas Cadhalpun	67ed1ee680	hqx: correct type and size check of info_offset It is used as size argument of ff_canopus_parse_info_tag, which uses it as size argument to bytestream2_init, which only supports sizes up to INT_MAX. Changing it's type to unsigned simplifies the check. Reviewed-by: Vittorio Giovara <vittorio.giovara@gmail.com> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit `1ed7fcd42a`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:13 +01:00
Andreas Cadhalpun	1f6c88e287	mxfdec: check edit_rate also for physical_track Previously only the edit_rate of material_track was checked. If it's negative, it causes assertion failures in av_rescale_rnd. Reviewed-by: Tim Nicholson <nichot20-at-yahoo.com@ffmpeg.org> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit `047bf82c18`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:13 +01:00
Andreas Cadhalpun	725d7fb2c6	mpegvideo: clear overread in clear_context Otherwise the h263p decoder can try to copy overread bytes, even though buffer is NULL. Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit `6a69a175e7`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:13 +01:00
Andreas Cadhalpun	258584cfaf	dvdsubdec: validate offset2 similar to offset1 If it is negative, it causes segmentation faults in decode_rle. Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit `f621749d11`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:13 +01:00
Andreas Cadhalpun	9e3848328d	aacdec: don't return frames without data from aac_decode_er_frame This is similar to commit `ec38a1b` for aac_decode_frame_int. Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> Reviewed-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `d7f29bfa69`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:13 +01:00
Michael Niedermayer	27f3696502	avcodec/takdec: Use memove, avoid undefined memcpy() use Fixes: e214333cbd94c91228e624ff39329ce6/asan_generic_4a5159_6412_96cda2530e80607210ab41ccae3d456d.tak Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7cea3430a5`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:13 +01:00
Andreas Cadhalpun	65dc698607	riffdec: prevent negative bit rate Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `189420cb56`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:12 +01:00
Michael Niedermayer	185126415e	Merge commit '`d80811c94e`' * commit '`d80811c94e`': riff: Use the correct logging context Conflicts: libavformat/asfdec_o.c libavformat/avidec.c libavformat/dxa.c libavformat/matroskadec.c libavformat/mov.c libavformat/riff.h libavformat/riffdec.c libavformat/wavdec.c libavformat/wtvdec.c libavformat/xwma.c Merged-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ba77fb61f7`) Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>	2015-11-26 01:37:09 +01:00
Michael Niedermayer	93f3752b97	Changelog: update for 2.7.3 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-18 20:05:22 +01:00
Martin Storsjö	cf115791da	rtmpcrypt: Do the xtea decryption in little endian mode The XTEA algorithm operates on 32 bit numbers, not on byte sequences. The XTEA implementation in libavutil is written assuming big endian numbers, while the rtmpe signature encryption assumes little endian. This fixes rtmpe communication with rtmpe servers that use signature type 8 (XTEA), e.g. crunchyroll. CC: libav-stable@libav.org Signed-off-by: Martin Storsjö <martin@martin.st> (cherry picked from commit e7728319b92dbb4fb949155e33de7ff5358ddff3) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-18 19:33:32 +01:00
Michael Niedermayer	bc3d86cddb	Update versions for 2.7.3 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-18 12:41:05 +01:00
Michael Niedermayer	aa9dadccac	avformat/matroskadec: Check subtitle stream before dereferencing Unrecognized streams are not allocated Fixes: flicker-1.color1.vp91447030769.08.webm Found-by: Chris Cunningham <chcunningham@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a5034b324c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-18 04:04:57 +01:00
Michael Niedermayer	0ecde45570	avformat/utils: Do not init parser if probing is unfinished Fixes assertion failure Fixes: 136f8b8d47af7892306625e597dee655/signal_sigabrt_7ffff6ae7cc9_8941_ab11bea57c84796418f481f873dc31ba.dvr_ms Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `1ef336e912`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-16 00:06:20 +01:00
Michael Niedermayer	ca43c6e1f5	avcodec/jpeg2000dec: Fix potential integer overflow with tile dimensions Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `65d3359fb3`) Conflicts: libavcodec/jpeg2000dec.c	2015-11-15 21:39:18 +01:00
Michael Niedermayer	2deaccfe67	avcodec/jpeg2000dec: Check SIZ dimensions to be within the supported range Fixes potential integer overflows Fixes: 03e0abe721b1174856d41a1eb5d6a896/signal_sigabrt_7ffff6ae7cc9_3813_e71bf3541abed3ccba031cd5ba0269a4.avi This fix is choosen to be simple to backport, better solution for master is planed Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `6ef819c40b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 21:38:23 +01:00
Michael Niedermayer	a9c73b13c1	avcodec/jpeg2000: Check comp coords to be within the supported size Fixes assertion failure Fixes: 03e0abe721b1174856d41a1eb5d6a896/signal_sigabrt_7ffff6ae7cc9_3813_e71bf3541abed3ccba031cd5ba0269a4.avi This fix is choosen to be simple to backport, better solution for master is planed Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a1a8cbcb35`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 21:05:26 +01:00
Michael Niedermayer	d972df307a	avcodec/jpeg2000: Use av_image_check_size() in ff_jpeg2000_init_component() Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `016fd413f9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 21:05:04 +01:00
Michael Niedermayer	082bdba4e7	avcodec/wmaprodec: Check for overread in decode_packet() Fixes assertion failure Fixes: 0256e92df2df7e933b43a2c70e4c8040/signal_sigabrt_7ffff6ae7cc9_1358_999ac18684788221490757582ce9af84.wma Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7ad698e24e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 18:58:10 +01:00
Michael Niedermayer	1039803823	avcodec/smacker: Check that the data size is a multiple of a sample vector Fixes out of array access Fixes: ce19e41f0ef1e52a23edc488faecdb58/asan_heap-oob_2504e97_4202_ffa0df1baed14022b9bfd4f8ac23d0cb.smk Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4a9af07a49`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 18:51:59 +01:00
Michael Niedermayer	acba2a36b3	avcodec/takdec: Skip last p2 sample (which is unused) Fixes out of array read Fixes: cb3f38b08b4541523974667c7d1eee9e/asan_heap-oob_2659e18_9838_021fd5cd635bf76cede6398cd9ecbcdd.tak Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `08b520636e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 02:13:55 +01:00
Michael Niedermayer	588a7769c7	avcodec/dxtory: Fix input size check in dxtory_decode_v1_410() Fixes potential out of array read Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `76b6f4b7d9`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 02:13:43 +01:00
Michael Niedermayer	08940cd545	avcodec/dxtory: Fix input size check in dxtory_decode_v1_420() Fixes out of array read Fixes: c50c4aa6cefda71b19a31ea12302980c/asan_heap-oob_12be5fd_7011_33ebd015a74976215934add72b9c8352.avi Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9caa9414cc`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-15 02:13:21 +01:00
Michael Niedermayer	196be9284a	avcodec/error_resilience: avoid accessing previous or next frames tables beyond height The height of tables can be rounded up for MBAFF but this does not imply that is also true for the previous frames Fixes out of array reads Fixes: c106b36fa36db8ff8f3ed0c82be7bea2/asan_heap-oob_32699f0_6321_467b9a1d7e03d7cfd310b7e65dc53bcc.mov Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a105f52855`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-14 23:04:54 +01:00
Michael Niedermayer	d61c3d1fca	avcodec/dpx: Move need_align to act per line Fixes out of array read Fixes: 61cf123c081ee2bb774d307c75bdb99e/asan_heap-oob_1224f76_5546_bee833ffae73f752b489b9eeaac52db7.dpx Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c8aaae8e0f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-14 16:51:30 +01:00
Michael Niedermayer	ec1f59150d	avcodec/flashsv: Check size before updating it Fixes out of array read Fixes: 3c857d4d90365731524716e6d051e43a/signal_sigsegv_7f4f59bcc29e_1386_20abd2c8e655cb9c75b24368e65fe3b1.flv Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `17705f5d4f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-14 13:50:30 +01:00
Michael Niedermayer	b996cde193	avcodec/ivi: Check image dimensions Fixes integer overflow Fixes: 1e32c6c591d940337c20b197ec1c4d3d/asan_heap-oob_4a52e5_8946_0bb0d9e863def56005e49f1d89bdc94d.avi Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `df91aa034b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-14 03:03:38 +01:00
Michael Niedermayer	63465f0070	avcodec/utils: Better check for channels in av_get_audio_frame_duration() Fixes integer overflow Fixes: 0c2625f236ced104d402b4a03c0d65c7/asan_generic_274e1ce_5990_9314e7a67c26aecf011b178ade9f217c.avi Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `4e16ad2868`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-14 03:02:28 +01:00
Michael Niedermayer	3300005351	avcodec/jpeg2000dec: Check for duplicate SIZ marker Fixes: 0231a17345734228011c6f35a64e4594/asan_heap-oob_1d92a72_3218_1213809a9e3affec77e4c191fdfdc0a9.mov Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `44a7f17d0b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-14 01:11:00 +01:00
Michael Niedermayer	4eb67f3ddc	tests/fate/avformat: Fix fate-lavf The CMP variable seems to have been inherited from fate-api-seek which set it to null the mxf reference needed a change due to `c7e14a279f` Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b83c849e87`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Simon Thelen	ae270314c7	doc/ffmpeg: Clarify that the sdp_file option requires an rtp output. Signed-off-by: Simon Thelen <ffmpeg-dev@c-14.de> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b02201efb5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Simon Thelen	b9a3e0af07	ffmpeg: Don't try and write sdp info if none of the outputs had an rtp format. Fixes a segfault when trying to write nonexistent rtp information. Signed-off-by: Simon Thelen <ffmpeg-dev@c-14.de> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `70fb5eadc5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Andreas Cadhalpun	132bd4bc4f	apng: use correct size for output buffer The buffer needs s->bpp bytes, at maximum currently 10. Assert that s->bpp is not larger. This fixes a stack buffer overflow. Reviewed-by: wm4 <nfxjfg@googlemail.com> Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit `3e8e1a660e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Andreas Cadhalpun	cd8bedb9fa	jvdec: avoid unsigned overflow in comparison The return type of strlen is size_t, i.e. unsigned, so if pd->buf_size is 3, the right side overflows leading to a wrong result of the comparison and subsequently a heap buffer overflow. Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit `db374790c7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	d332aa6ec6	avcodec/hevc_ps: Check chroma_format_idc Fixes out of array access Fixes: 24d05e8b84676799c735c9e27d97895e/asan_heap-oob_1b70f6a_2955_7c3652a7f370f9f3ef40642bc2c99bb2.bit Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `93f30f825c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	169a02da1e	avcodec/jpeg2000dec: Clip all tile coordinates Fixes out of array access Fixes: b877a6b788a25c70e8b1d014f8628549/asan_heap-oob_1da2c3f_2324_5a1b329b0b3c4bb6b1d775660ac56717.r3d Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `43492ff3ab`) Conflicts: libavcodec/jpeg2000dec.c	2015-11-12 02:55:47 +01:00
Michael Niedermayer	af3a608e7e	avcodec/microdvddec: Check for string end in 'P' case Fixes out of array read Fixes: a9502b60f4cecc19475382aee255f73c/asan_heap-oob_1e87fba_2548_a8ad47f6dde36644fe9cdc444d4632d0.sub Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c719cd6cf7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	327dd70690	avcodec/dirac_parser: Fix undefined memcpy() use Fixes: 9d375e415486edd1a0c826f2307d89a4/asan_generic_4a5159_1577_faa333e83dacdd9e4dd322380aeed537.iss Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `daefd8ab2f`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	bcedc2b0f0	avformat/xmv: Discard remainder of packet on error Fixes infinite loop Fixes: 9c48ae2680c5f23bca3d20ff0f325fd8/asan_generic_4c254d_1374_993f1e5967dd6f844b8d72f978ce2a6c.pss Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `79c4a338e4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	6ad10cbec9	avformat/xmv: factor return check out of if/else Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9b6fac11da`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	b0b1b208f5	avcodec/mpeg12dec: Do not call show_bits() with invalid bits Fixes assertion failure Fixes: 63e50545709a6440d3d59f6426d58db9/signal_sigabrt_7ffff6ae7cc9_8189_3272a3010fd98ddf947c662bbde1ac13.ts Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `973c3dba27`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	6acf5ff1d3	libavutil/channel_layout: Check strtol*() for failure Fixes assertion failure Fixes: 4f5814bb15d2dda6fc18ef9791b13816/signal_sigabrt_7ffff6ae7cc9_65_7209d160d168b76f311be6cd64a548eb.wv Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c9bfd6a8c3`) Conflicts: libavutil/channel_layout.c	2015-11-12 02:55:47 +01:00
Michael Niedermayer	e98f3ba221	avcodec/ffv1dec: Check for 0 quant tables Fixes assertion failure Fixes: 07ec1fc3c1cbf2d3edcd7d9b52ca156c/asan_heap-oob_13624c5_491_ecd4720a03e697ba750b235690656c8f.avi Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5745cf799a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00
Michael Niedermayer	32808460cc	avcodec/mjpegdec: Reinitialize IDCT on BPP changes Fixes misaligned access Fixes: dc9262a469f6f315f74c087a7b3a7f35/signal_sigsegv_2e95bcd_9_9c0f9f4a9ba82aa9b3ab2b91ce4d5277.jpg Found-by: Mateusz "j00ru" Jurczyk and Gynvael Coldwind Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `cc35f6f476`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2015-11-12 02:55:47 +01:00

1 2 3 4 5 ...

73016 commits