URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=40a6963fbd0c47be358a3760480180b7b532e1e9
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Mar 16 22:36:08 2025 +0100
Update for 4.4.6
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4e691e9038d821a65cc8fbd7d81a0dd87a834ffe
Author: Lynne <d...@lynne.ee>
Date: Wed Jan 1 18:03:33 2025 +0900
configure: update copyright year
On 01/01/2025 19:05, Peter Ross wrote:
> FFmpeg turns 25 this year.
(cherry picked from commit d3aa99a4f436e89773246339d9d363587a1d21df)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1738fa9fbad63742c9c1da5a3da1f335cad1ceac
Author: softworkz <softwo...@hotmail.com>
Date: Thu Feb 27 16:36:56 2025 +0000
avformat/hls: Partially revert "reduce default max reload to 3"
(setting to 100 as a reasonable compromise)
The change has caused regressions for many users and consumers.
Playlist reloads only happen when a playlist doesn't indicate that it
has ended (via #EXT-X-ENDLIST), which means that the addition of future
segments is still expected.
It is well possible that an HLS server is temporarily unable to serve
further segments but resumes after some time, either indicating a
discontinuity or even by fully catching up.
With a segment length of 3s, a max_reload value of 1000 corresponds to
a duration of 50 minutes which appears to be a reasonable default.
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit ace9f03a6c0a58b84a02701df1b6e5d5ac1d1b8e)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=6e8c1156154e9ad369db48d302ec5db6a9119a68
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Feb 6 13:09:08 2025 +0100
avformat/hls: Fix twitter
Allow mp4 with all mpegts extensions
Fixes: Ticket11435
Reviewed-by: Steven Liu <lingjiujia...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit cef3422b4819e3b6f07086625fa7890eaa8d45e7)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=8b0e947cc90f2da0408bf65b661e301da74a1877
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Jan 28 23:07:54 2025 +0100
libavformat/hls: Be more restrictive on mpegts extensions
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 0113e30806b205111344e266bc69ff9657a3ca02)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3c978db990fce8f82e4ca6a55beaf39ad17d0702
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Jan 28 13:26:34 2025 +0100
avformat/hls: .ts is always ok even if its a mov/mp4
Maybe fixes: 11435
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 9e12572933dc1c49e9b35d772ddcae896c2ba8a8)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=883515c65a50f7dbde703a807724ff4ee8c90e17
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Jan 28 12:51:58 2025 +0100
avformat/hls: Print input format in error message
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit d8455331302c72cde2f0b72f255004a91189dd93)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=345202af04ae449417101b7bf25a7d4595af8a88
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Jan 16 01:28:46 2025 +0100
avformat/hls: Be more picky on extensions
This blocks disallowed extensions from probing
It also requires all available segments to have matching extensions to the
format
mpegts is treated independent of the extension
It is recommended to set the whitelists correctly
instead of depending on extensions, but this should help a bit,
and this is easier to backport
Fixes: CVE-2023-6602 II. HLS Force TTY Demuxer
Fixes: CVE-2023-6602 IV. HLS XBIN Demuxer DoS Amplification
The other parts of CVE-2023-6602 have been fixed by prior commits
Found-by: Harvey Phillips of Amazon Element55 (element55)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 91d96dc8ddaebe0b6cb393f672085e6bfaf15a31)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9205dcfd1233a70a9e47232aa580c46dba72bf03
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon May 15 00:54:50 2023 +0200
avformat: add ff_match_url_ext()
Match url against a list of extensions similar to av_match_ext()
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit a7b06bfc5d20b12ff0122702c09517cf359fbb66)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=eb1782ea84ebdb357917b249a353552060a8ebe4
Author: Cosmin Stejerean <cos...@cosmin.at>
Date: Wed Dec 6 18:39:32 2023 +0800
avfilter/bwdif: account for chroma sub-sampling in min size calculation
The current logic for detecting frames that are too small for the
algorithm does not account for chroma sub-sampling, and so a sample
where the luma plane is large enough, but the chroma planes are not
will not be rejected. In that event, a heap overflow will occur.
This change adjusts the logic to consider the chroma planes and makes
the change to all three bwdif implementations.
Fixes #10688
Signed-off-by: Cosmin Stejerean <cos...@cosmin.at>
Reviewed-by: Thomas Mundt <tmund...@gmail.com>
Signed-off-by: Philip Langdale <phil...@overt.org>
(cherry picked from commit 737ede405b11a37fdd61d19cf25df296a0cb0b75)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=75e264c999f8aa99e968736fdc4e18ccd193a271
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Feb 9 01:28:17 2025 +0100
avformat/iff: Check that we have a stream in read_dst_frame()
Fixes: null pointer dereference
Fixes:
385644864/clusterfuzz-testcase-minimized-ffmpeg_dem_IFF_fuzzer-4551049565765632
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Peter Ross <pr...@xvid.org>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 8668957ef604bd2b99175310638bc5031ae0d991)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b9ab6272cc1772da6bd20b701933dbf11d1f3109
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Fri Feb 7 02:33:21 2025 +0100
avformat/mlvdec: fix size checks
Fixes: heap-buffer-overflow
Fixes:
391962476/clusterfuzz-testcase-minimized-ffmpeg_dem_MLV_fuzzer-5746746587676672
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 251d43aef0df9262f2688c1c848af993bbb67d08)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ae3877674a48a97ac2aa3aa63f2c6b0b43cf0882
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Feb 5 03:47:52 2025 +0100
avformat/mxfdec: Check edit unit for overflow in mxf_set_current_edit_unit()
Fixes: signed integer overflow: 9223372036854775807 + 1 cannot be
represented in type 'long'
Fixes:
392672068/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-6232335892152320
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Tomas Härdin <g...@haerdin.se>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 8a6ad9eab2f1c37a18c2f30e6660260edd7c0c16)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4ed4070370f4ac0679ca2d63f8e567c20ea7c864
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Jan 30 02:28:32 2025 +0100
avcodec/h263dec: Check against previous dimensions instead of coded
Fixes: out of array access
Fixes: crash-a41ef3db699013f669b076f02f36942925f5a98c
Found-by: Kacper Michajlow <kaspe...@gmail.com>
Reviewed-by: Kacper Michajlow <kaspe...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 0fe33c99a26a06a6875c4abfb96362a65145264b)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=39211a28d71824aa47154ad36b4c6eb9271d045a
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Sep 23 20:05:37 2024 +0200
avformat/mxfdec: Check avio_read() success in mxf_decrypt_triplet()
Fixes: Use of uninitialized memory
Fixes:
71444/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-5448597561212928
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 6ecc96f4d08d74b0590ab03f39f93f386910c4c0)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=38c32b24f90e0e59a52afb1b3449c4efeea0e6a9
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Nov 30 01:48:22 2024 +0100
avcodec/huffyuvdec: Initialize whole output for decode_gray_bitstream()
Fixes: use of uninitialized memory
Fixes:
375286238/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HYMT_fuzzer-6352546854141952
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit ef71552cf970876085d99834abdb8e429aea9730)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bd52b5a089cb11852a0fe9641f828c8f2a450757
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Dec 26 03:07:51 2024 +0100
avformat/ipmovie: Check signature_buffer read
Fixes: use of uninitilaized data
Fixes:
385167047/clusterfuzz-testcase-minimized-ffmpeg_dem_IPMOVIE_fuzzer-5941477505564672
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 788abe0d253b2034af15876d7889265d4746df2b)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=6ae84a4677f7f781c6693c661feb82a24928e6aa
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Dec 26 02:53:45 2024 +0100
avformat/wtvdec: Initialize buf
ff_parse_mpeg2_descriptor() reads over what is initialized
Fixes: use of uninitialized memory
Fixes:
383825645/clusterfuzz-testcase-minimized-ffmpeg_dem_WTV_fuzzer-5144130618982400
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 17b019c517af26c6d2f0c6266938c60d36db1fa3)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3d2562bae3fb07de68ebac9ac3975496690dd3af
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Jan 1 05:03:08 2025 +0100
avcodec/cbs_vp9: Initialize VP9RawSuperframeIndex
Fixes: use-of-uninitialized-value
Fixes:
70907/clusterfuzz-testcase-minimized-ffmpeg_BSF_VP9_METADATA_fuzzer-6339363208757248
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit e81d410242ea604c4f667da4a415836c1575d72f)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=2bf42f58e430002b6911e425808cbf0b1680faef
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Dec 31 04:13:25 2024 +0100
avformat/vqf: Propagate errors from add_metadata()
Suggested-by: Marton Balint <c...@passwd.hu>
Reviewed-by: Alexander Strasser <eclip...@gmx.net>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 49fa3f6c5ba6d43cc4b3ade4f8d9dc2fdbc71f0a)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f79e3fbca05a1e4418691b752db4788f8fa17c9d
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Dec 26 01:46:49 2024 +0100
avformat/vqf: Check avio_read() in add_metadata()
Fixes: use of uninitialized data
Fixes:
383825642/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-5380168801124352
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c43dbecbdad152a91eadc7538b545852eee562ae)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=96a0450a9f20b51327cfabc30553377622e324b0
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Jan 16 00:22:05 2025 +0100
avformat/dashdec: Check whitelist
Fixes: CVE-2023-6602, V. DASH Playlist SSRF
Found-by: Harvey Phillips of Amazon Element55 (element55)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 4c96d6bf75357ab13808efc9f08c1b41b1bf5bdf)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=85f3c17e68f32c2964943f69bbb03400c39da74b
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Jan 15 03:30:21 2025 +0100
avutil/avstring: dont mess with NULL pointers in av_match_list()
Fixes: applying zero offset to null pointer
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c6c54943d161812b3c4034116cb14f3f5c05dc43)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7a32518dbc152f8e57e846df2d88cb11d3a68f58
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Jan 8 03:11:02 2025 +0100
avfilter/vf_v360: Fix NULL pointer use
Fixes: applying zero offset to null pointer
partly Fixes: verysmall.flv
Found-by: Elias Myllymäki <elias.myllymaki...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 66e9888bf418984a274beddbc3e87e9f1b8f5077)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4ba5234090d0a1b5c200632c37a7bf07dc450f66
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Jan 8 02:59:28 2025 +0100
avcodec/mpegvideo_enc: Check FLV1 resolution limits
Found-by: Elias Myllymäki <elias.myllymaki...@gmail.com>
Reviewed-by: Alexander Strasser <eclip...@gmx.net>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 827c073154f4cc17d1bd3777dff3b58370210bcb)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=5f34b017a176152c2d07018ae48605832ea3fc71
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Jan 9 21:35:06 2025 +0100
avcodec/ffv1enc: Fix handling of 32bit unsigned symbols
This may be needed for floats
Sponsored-by: Sovereign Tech Fund
Reviewed-by: Alexander Strasser <eclip...@gmx.net>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 402824e9e99461f1c9e74a6730ced40894669560)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b9d4a0c55a9a8eb1ac4c590ddb6dde481c7e8f45
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Dec 1 23:30:55 2024 +0100
avcodec/vc1dec: Clear block_index in vc1_decode_reset()
Fixes:
377965565/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VC1_fuzzer-4504434689769472
Fixes: out of array access
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 251de1791e645f16e80b09d82999d4a5e24b1ad1)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=58a527f12e53a3ed3320d5144883c75be350cab8
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Dec 1 22:27:18 2024 +0100
avcodec/aacsbr_template: Clear n_q on error
Fixes: index 5 out of bounds for type 'uint8_t [5]'
Fixes:
377748135/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AAC_LATM_fuzzer-5167109774049280
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 3f029bfb7f9ca1c73fecb8d0eacf3c4e0550f771)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4392d60d520503d45d94242ffa6a3ff4dd833b38
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Dec 1 03:25:09 2024 +0100
swscale/output: Fix undefined overflow in yuv2rgba64_full_X_c_template()
Fixes: signed integer overflow: -1082982400 + -1195645138 cannot be
represented in type 'int'
Fixes:
376136843/clusterfuzz-testcase-minimized-ffmpeg_SWS_fuzzer-4791844321427456
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 56faee21c136942c491f30a2e82cfbbfce180beb)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a0e2fd18917a19605bb4efd12c7501c6b8bc26d0
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Jan 6 22:01:39 2025 +0100
avfilter/af_pan: Fix sscanf() use
Fixes: Memory Data Leak
Found-by: Simcha Kosman <simcha.kos...@cyberark.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit b5b6391d64807578ab872dc58fb8aa621dcfc38a)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=79427a521225b216efec94f4153eb19f47ae063b
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Jan 5 02:36:25 2025 +0100
avfilter/vf_addroi: Add missing NULL termination to addroi_var_names[]()
Fixes: out of array read
Found-by: Elias Myllymäki <elias.myllymaki...@gmail.com>
Reviewed-by: Alexander Strasser <eclip...@gmx.net>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit b72de492959fb19eab37368232e65a4371c367f7)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1887f3f383676333c64954e1d66b619d7deb5da8
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Fri Aug 16 14:47:42 2024 +0200
avformat/rmdec: check that buf if completely filled
Fixes: use of uninitialized value
Fixes:
70988/clusterfuzz-testcase-minimized-ffmpeg_dem_IVR_fuzzer-5298245077630976
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 9578c135d00dd9cc01491b8559d7fad5a387e90d)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=55dbb410d423b0aff659834ca33f92d2cfaeb20f
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 11 23:15:32 2024 +0200
avcodec/hapdec: Clear tex buffer
The code following makes no attempt to initialize all of the buffer
Fixes: use of uninitialized value
Fixes:
70980/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HAP_fuzzer-5329909059223552
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 7eeeda703b599847aa89c7c08bb433d0b3da9590)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=545fd68b134e90503db487385c17f9febe1ff096
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 11 22:53:47 2024 +0200
avformat/mxfdec: Check that key was read sucessfull
Fixes: use of uninitialized value
Fixes:
70932/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-4870202133643264
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 4c62cbcae2612acbc7ab5e8a7e7815674a6e8df4)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=de8d4d10b72ac4affe99e1fd8cd30076e4151307
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Nov 18 04:09:11 2024 +0100
avformat/rpl: Fix check for negative values
Fixes: signed integer overflow: 10 * -1923267925333400000 cannot be
represented in type 'int64_t' (aka 'long')
Fixes:
378891963/clusterfuzz-testcase-minimized-fuzzer_loadfile_direct-5714338935013376
Found-by: ossfuzz
Reported-by: Kacper Michajlow <kaspe...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit eab65379bf89c55d8ec4bc6f00e04f15b37d3d85)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ea75580186e1bf9c308a901b87187e257c97be05
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Dec 25 05:13:02 2024 +0100
avformat/mlvdec: Check avio_read()
Fixes: use-of-uninitialized-value
Fixes:
383170476/clusterfuzz-testcase-minimized-ffmpeg_dem_MLV_fuzzer-4696002884337664
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Peter Ross <pr...@xvid.org>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit bb85423142103d694d97bad1967bd3dc55440e71)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=d4c14232d4df19f658469b0ab21f6bcafeae2783
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Dec 11 22:37:07 2024 +0100
avcodec/utils: Fix block align overflow for ADPCM_IMA_WAV
Fixes: signed integer overflow: 529008646 * 8 cannot be represented in type
'int'
Fixes:
383379145/clusterfuzz-testcase-minimized-ffmpeg_dem_CAF_fuzzer-6674045107503104
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 93270930798da368d5b1954a73ef7ff9dfa48f73)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1c02b9fa67cc2614e244f73bd9e0acc70c6bbae1
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Dec 11 21:36:11 2024 +0100
avformat/matroskadec: Check pre_ns for overflow
Fixes: signed integer overflow: -3483479120376300096 - 7442323944145700864
cannot be represented in type 'long'
Fixes:
383187489/clusterfuzz-testcase-minimized-ffmpeg_dem_WEBM_DASH_MANIFEST_fuzzer-4561470580391936
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 361d24e6d920e4f7e4e5fa1fd6fbb6922bff35f2)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9272251a144d44cb2a8433f902d95a0ce0065ca9
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Dec 22 00:28:21 2024 +0100
avutil/timecode: Avoid fps overflow in av_timecode_get_smpte_from_framenum()
Fix from c94875471e3ba3dc396c6919ff3ec9b14539cd71
Found-by: Youngjae Choi <youngjaec...@korea.ac.kr>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 6ba33b50f51b17eef0449f20b3524f174dc9c3cc)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0776a5bf603326569d6d9f413742a0f8b175375f
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Fri Aug 16 16:00:01 2024 +0200
avcodec/webp: Check ref_x/y
Fixes:
70991/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WEBP_fuzzer-5544067620995072
Fixes: use of uninintailized value
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 7c1e732ad2e240af5afe9ffea443c91bb233aa65)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b2127544723f977514409634686e83967b7a8044
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Sep 23 19:57:28 2024 +0200
avcodec/ilbcdec: Initialize tempbuff2
Fixes: Use of uninitialized value
Fixes:
71350/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ILBC_fuzzer-6322020827070464
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 4482218440534804d067de00ee1a4bc493c8b41d)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=dcb162699e2d4e515ea28b2e8e81e2ea09991029
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Oct 19 01:15:53 2024 +0200
avformat/dxa: check bpc
Fixes: integer overflow: -2147483648 - 1 cannot be represented in type 'int'
Fixes:
373971762/clusterfuzz-testcase-minimized-ffmpeg_dem_DXA_fuzzer-4880491112103936
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 7e020f21413269418180eea7933a94ecb6bf2ef8)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4e7c0059652d0c61a20cc5498c8d322b2fda8626
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Oct 19 00:08:03 2024 +0200
swscale/slice: clear allocated memory in alloc_lines()
Fixes: use of uninitialized memory in hScale16To15_c()
Fixes:
373924007/clusterfuzz-testcase-minimized-ffmpeg_SWS_fuzzer-5841199968092160
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit aeec39f3c1be82863efe64ce95242de58e075e8f)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=78713d37c32139993a1afae9427c640db2333c60
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Nov 18 23:55:05 2024 +0100
avcodec/mjpegdec: Disallow progressive bayer images
Fixes: Null pointer dereference
Fixes: sample1.dng
Found-by: South East <8billion.peo...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 6d8285633d8965658dfa6cd0b201cca36184c467)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=281fcb5a0914521c631f2b2d5209e628b7345fa3
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Nov 3 11:07:27 2024 +0100
avformat/icodec: fix integer overflow with nb_pal
Fixes: runtime error: signed integer overflow
Fixes:
42536949/clusterfuzz-testcase-minimized-fuzzer_loadfile-6199846684393472
Found-by: ossfuzz
Reported-by: Kacper Michajlow
Tested-by: Kacper Michajlow
Reviewed-by: Peter Ross <pr...@xvid.org>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 84569b6c22cb4eda9c682aabeb5f658112126780)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ee842af045abf669f9653eba635099d25592904d
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Nov 16 21:32:53 2024 +0100
doc/developer: Document relationship between git accounts and MAINTAINERS
This should have been documented long ago and i thought it was
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 7051825b0171bd5d566c5a5cc78852c5f3aa3072)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=17168de0efedd9861b185d639e2243e3ce275bb3
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Nov 3 20:54:29 2024 +0100
avformat/vividas: Check avio_read() for failure
Fixes: use of uninitialized value (untested)
Fixes:
42537627/clusterfuzz-testcase-minimized-fuzzer_loadfile_direct-5505802505355264
Found-by: ossfuzz
Reported-by: Kacper Michajlow
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 96d45c3b212689f82bff2530c3637405df9e9369)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=57eff9bce1725b2ac127a627074b211abebf5d6c
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Nov 3 20:47:07 2024 +0100
avformat/ilbc: Check avio_read() for failure
Fixes: use of uninitialized value
Fixes:
42537627/clusterfuzz-testcase-minimized-fuzzer_protocol_memory-6656646223298560-cut
Found-by: ossfuzz
Reported-by: Kacper Michajlow
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit e30d957a9bacf7f7307c640aa0bd1e70cb3bbe7e)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9d4abe3ca9bb2fcb129db156ed0068fbfc3b9194
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Nov 3 20:43:21 2024 +0100
avformat/nistspheredec: Clear buffer
Fixes: use-of-uninitialized-value
Fixes:
42537627/clusterfuzz-testcase-minimized-fuzzer_protocol_memory-6515855798632448-cut
Found-by: ossfuzz
Reported-by: Kacper Michajlow
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 898f6582eb51bf77b1f88e8f55eab67ee6ee13b8)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0080bc21b8ce079cacc621d29003fe9cfcfc2a96
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Nov 3 20:18:36 2024 +0100
avformat/mccdec: Initialize and check rate.den
Fixes: Assertion c > 0 failed at libavutil/mathematics.c:61
Fixes: use-of-uninitialized-value
Fixes:
42537627/clusterfuzz-testcase-minimized-fuzzer_protocol_memory-5939605805793280
Found-by: ossfuzz
Reported-by: Kacper Michajlow
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit bf8e43083f68c383b9d905d2c8c791ac33ecc7bc)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=59ef104b89c85a196a5b3f4a2358c54a90d503e5
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Nov 2 18:23:50 2024 +0100
INSTALL: explain the circular dependency issue and solution
Sponsored-by: Sovereign Tech Fund
Reviewed-by: James Almer <jamr...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit df00705e0010cc2c53d17d51944f847c2c852189)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e5c3a6e8ccc1119c38c4175adcc061d970e2db8b
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Oct 9 23:44:00 2024 +0200
avformat/mpegts: Initialize predefined_SLConfigDescriptor_seen
Fixes: use of uninitialized variable
Fixes:
368729566/clusterfuzz-testcase-minimized-ffmpeg_dem_MPEGTS_fuzzer-6044501804646400
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit db7b4fc89fb18d5ff0a1426bd433c234555a3fff)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=772029fd967568537c24b471bcd2f69972c7b549
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Oct 9 20:47:34 2024 +0200
avformat/mxfdec: Fix overflow in midpoint computation
Fixes: signed integer overflow: 4611686016549392399 + 9223372033098784800
cannot be represented in type 'long long'
Fixes:
368503277/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-5928227458056192
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 23088a5ff2b549fa4fc037bb9ed833fffbc89ca0)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4f68dba368dd41d97f0f1c3ad97e1286aa59ddf1
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Oct 9 20:39:07 2024 +0200
swscale/output: used unsigned for bit accumulation
Fixes: Integer overflow
Fixes:
368725672/clusterfuzz-testcase-minimized-ffmpeg_SWS_fuzzer-5009093023563776
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 3fe3014405494503a03c2e6eff4743db91a21c00)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=71022a4d3ae2b447c70ed901f3da429ced41d153
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Oct 16 14:39:20 2024 +0200
avcodec/rangecoder: only perform renorm check/loop for callers that need it
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit d147b3d7ecba2bd40cb45284f920238da97a95ee)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=91aace337263f57a1207bdd7eaf8b5ac35272e23
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Oct 10 20:39:23 2024 +0200
avcodec/ffv1dec: Fix end computation with ec=2
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 10e5af15bf220d9da128ca12d2d474ff6ab0076e)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=50505d4c5ad2702f17061b8759ce914c4981dab3
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Oct 1 22:06:40 2024 +0200
avcodec/ffv1enc: Prevent generation of files with broken slices
Fixes: Ticket5548
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit b7ff66a35804275b25c1176cad560540785e8750)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=312b889660248339e07ea321a5f472c051d9d1a1
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Jul 28 22:08:23 2024 +0200
avformat/matroskadec: Check desc_bytes so bits fit in 64bit
Likely a tighter check can be done
Fixes: signed integer overflow: 3305606804154370442 * 8 cannot be
represented in type 'long'
Fixes:
70449/clusterfuzz-testcase-minimized-ffmpeg_dem_WEBM_DASH_MANIFEST_fuzzer-4771166007918592
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c4122406f6d2726aea833480a2a8e345833dd881)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=53a793a4934b6d9e0f3a1433fe0fd7022cbcef78
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Oct 1 22:04:58 2024 +0200
avcodec/ffv1enc: Correct error message about unsupported version
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 556c767786e9e3c072f7666d60a68a31a3400438)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9349806174e0062efa87fcc3f52d113754dfcea0
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Fri Oct 6 22:23:33 2023 +0200
avcodec/ffv1enc: Slice combination is unsupported
We always write minimal slices, the size calculation is wrong in some
corner cases but as its always 1x1 (minus1) we can for now just hard-code it
This helps with ticket 5548
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 7d514655bfa47c6e5cc1b81fbba8e750e368036e)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4d606c71f49c2b45fd09f3acd1ec23928920fe6b
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Sep 30 23:42:50 2024 +0200
avcodec/ffv1enc: 2Pass mode is not possible with golomb coding
"Fixes" Ticket7063
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 417b163c00555ccda201a963e797bfa663a26ff5)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=309d919ade2d827dbe3057ff50bf1ba79a7294a0
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Sep 24 23:43:09 2024 +0200
avcodec/ffv1enc: Fix >8bit context size
Fixes: Ticket5405
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit a9c83e43f2fc9128e20851291b0270add1a6b95f)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=802c40ebe512b0ac9a4fc9cdcc2c579fdd9f1d34
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Sep 22 23:15:35 2024 +0200
avcodec/xan: Add basic input size check
Fixes: Timeout
Fixes:
71739/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_XAN_WC3_fuzzer-6170301405134848
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpe
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 56bef2fd58d0ed30dbe940083c30ada2b0404491)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b5a3eaf77a7b22091b669f1a45eab384c591dafe
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Sep 22 20:31:58 2024 +0200
avcodec/svq3: Check for minimum size input
Fixes: Timeout
Fixes:
71295/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SVQ3_fuzzer-4999941125111808
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 050b5e85cbe61414ba9b78f76a04b2488e816f42)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4d166d37587bb0c975a07f16995225fdfd0f8c36
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 19 23:57:31 2024 +0200
avcodec/eacmv: Check input size for intra frames
Fixes: Timeout
Fixes:
71135/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EACMV_fuzzer-6251879028293632
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c3a1cbbf5d99337b5e99260eb95c84e65c7587f6)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b18ca50c9a7ee484e5d23a782c0fb2a76572a25d
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 19 21:57:09 2024 +0200
avcodec/jfdctint_template: use unsigned z* in row_fdct()
Fixes: signed integer overflow: 856827136 + 2123580416 cannot be
represented in type 'int'
Fixes:
70772/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_PRORES_KS_fuzzer-5180569961431040
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit f27c8b04d3059fa538db8f2db6503cbb586eb3ad)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=42b7b6df992bb6f86f1e78cf6bb7bd35a9f8d7b0
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 12 22:05:24 2024 +0200
avformat/mxfdec: Check timecode for overflow
Fixes: signed integer overflow: 9223372036840103968 + 538976288 cannot be
represented in type 'long'
Fixes:
70604/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-4844090340999168
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 6be3786c828edfd60d810c98a42a43eeac4f050c)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=2a7a5115460f6e1d757dc8e70b0f213c674dd1c8
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 12 22:29:04 2024 +0200
avformat/mxfdec: More offset_temp checks
Fixes: signed integer overflow: 9223372036854775807 - -1927491430256034080
cannot be represented in type 'long'
Fixes:
70607/clusterfuzz-testcase-minimized-ffmpeg_dem_MXF_fuzzer-5282235077951488
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Tomas Härdin <g...@haerdin.se>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 5a96aa435af0d66bdec52ee115cf4dd971855fcd)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=84a2bf6971e3d170f659bf2a480a3c0158eacc77
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 12 22:51:53 2024 +0200
swscale/output: Fix undefined integer overflow in yuv2rgba64_2_c_template()
Fixes: signed integer overflow: -1082982400 + -1083218484 cannot be
represented in type 'int'
Fixes:
70657/clusterfuzz-testcase-minimized-ffmpeg_SWS_fuzzer-6707819712675840
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit bd80c97391969f9dbb312d6c498211ad85bb67cb)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=11d9a58cc9496989a941209b57f0250dada6cc1c
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 12 20:08:42 2024 +0200
swscale/swscale: Use unsigned operation to avoid undefined behavior
I have not checked that the constant is correct, this just fixes the
undefined behavior
Fixes: signed integer overflow: -646656 * 3517 cannot be represented in
type 'int
Fixes:
70559/clusterfuzz-testcase-minimized-ffmpeg_SWS_fuzzer-5209368631508992
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 44c5641ae82387fcfce94820f5b53ce8e9dcd27f)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=940dd450d0defcee1584f3387c50d0005d9be228
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Sep 12 20:03:55 2024 +0200
avcodec/vc2enc: basic sanity check on slice_max_bytes
Fixes: left shift of 896021632 by 3 places cannot be represented in type
'int'
Fixes:
70544/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VC2_fuzzer-6685593652756480
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 6df9a0292ca6c29ef3b220fbf9b257924cabf035)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a92471dc3d0d2f32e37e5f88e1588f808e6d1d61
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Aug 15 00:37:05 2024 +0200
avformat/mvdec: Check if name was fully read
Fixes: use of uninitialized value
Fixes:
70901/clusterfuzz-testcase-minimized-ffmpeg_dem_MV_fuzzer-6341913949569024
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 4e39795c75e664ef06f17473adec8c75fcf9de6f)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=5665329af3a4d7eeb4afb795613b33a388c97687
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Aug 15 00:37:04 2024 +0200
avcodec/wmavoice: Do not use uninitialized pitch[0]
Fixes: use of uninitialized value
Fixes:
70850/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMAVOICE_fuzzer-4806127362048000
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 53387079301690f1bd38b97fdf31d63194201d17)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a5a970e3ca54994576944f30c3f5a75828a151f0
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Aug 19 22:17:48 2024 +0200
avformat/argo_brp: Check that ASF chunk header is completely read
Fixes: Use of uninitialized value
Fixes:
71280/clusterfuzz-testcase-minimized-ffmpeg_dem_ARGO_BRP_fuzzer-4692991866896384
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 815d00868101956e2f1f9f8dd509c11af5a63684)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0f6510a1a5f5d9ce73ea7f7817deaa315242640a
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Aug 19 20:37:56 2024 +0200
avcodec/notchlc: Check bytes left before reading
Fixes: Use of uninitialized value
Fixes:
71230/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_NOTCHLC_fuzzer-4624502095413248
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit b9c7f50c7de9b7d8c533eae173c9b77a6719346c)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=25d921123d37db209b22159bd87867cf4a657d22
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Aug 19 20:02:41 2024 +0200
avcodec/vc1_block: propagate error codes
Fixes: use of uninitialized value
Fixes:
71228/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VC1IMAGE_fuzzer-6188476880453632
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 01910ca6037379804572c5ec9bbd0b94e7e4b83e)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bdda29b4c48a9715d32bb33326df1bb721ce3604
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Aug 19 17:02:12 2024 +0200
avformat/apetag: Check APETAGEX
Fixes: Use of uninitialized value
Fixes:
71074/clusterfuzz-testcase-minimized-ffmpeg_IO_DEMUXER_fuzzer-5697034877730816
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 796ff2d599449ed798b69ab798ebcbcc0a5853f5)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=50740973ec11d6b48a378210bbb3473058b52e86
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Aug 17 01:11:50 2024 +0200
avcodec/avcodec: Warn about data returned from get_buffer*()
Text based on suggestion by: epira...@gmail.com
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 93444c46fce195e378c4ebb1a20ea662e7f0123b)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e2403b6b452fdf4090aa43f1a869a12eb5ac8f1b
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 4 22:30:03 2024 +0200
avcodec/aic: Clear slice_data
Fixes: use-of-uninitialized-value
Fixes:
70865/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AIC_fuzzer-4874102695854080
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit de3f6c8888bcf3df4ca6cb265a83507b95c884cd)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f5dea77598db91bc5b2ef67c2b3571c2e9e53a5f
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 4 22:15:08 2024 +0200
avcodec/vc1dec: Clear mb_type_base and ttblk_base
Fixes: two use-of-uninitialized-value
Fixes:
70856/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VC1IMAGE_fuzzer-5539349918187520
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 50471f96c4a68874575ab21f799c5999ed920838)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b2c676a02f0ee5c5ca88573393c5ffb0b6750ea9
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 4 22:10:48 2024 +0200
avcodec/shorten: clear padding
Fixes: use-of-uninitialized-value
Fixes:
70854/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SHORTEN_fuzzer-5533480570650624
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit e44349ee88418ac16051bbc9231c1bfdc25d3504)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bf22df9aa9503778a9ce18afc8f0ea915511f810
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 4 21:27:44 2024 +0200
avformat/mpeg: Check an avio_read() for failure
Fixes: use-of-uninitialized-value
Fixes:
70849/clusterfuzz-testcase-minimized-ffmpeg_dem_MPEGPS_fuzzer-4684401009557504
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 66ee75d76ce56a3553a99d67e74b8a9970c18f5b)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7ab9c9a6e20a58d87a60a0e1f2bd4a3d7f98d958
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Aug 3 19:11:33 2024 +0200
avcodec/mvha: Clear remaining space after inflate()
Fixes: use-of-uninitialized-value
Fixes:
70838/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MVHA_fuzzer-4878509466517504
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit cba4e2e40dec1ff2ce534fec87c7e3e8bef7ff9b)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3aabb889f48760b2ae255d7373d2992dcf2c034e
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Tue Aug 6 18:02:58 2024 +0200
avformat/segafilm: Set keyframe
Fixes: use of uninitialized value
Fixes:
70871/clusterfuzz-testcase-minimized-ffmpeg_dem_SEGAFILM_fuzzer-5883617752973312
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 4dc7dfe65aaa21801a907c66592b92b05da921dc)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1bb8e0dd58892f1d39856dc4a4e2949b29420b2e
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Aug 12 18:20:33 2024 +0200
avcodec/sga: av_assert1 check init_get_bits8()
Related: CID1473562 Unchecked return value
Related: CID1473592 Unchecked return value
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 0f4524f07a93bf9061f9034ffa510d4bf9b582e8)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=37ed38d6210818b870482f70b1e0008448470aba
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun May 26 22:33:11 2024 +0200
avcodec/dxva2: initialize hr in ff_dxva2_common_end_frame()
Related: CID1591924 Uninitialized scalar variable
Related: CID1591938 Uninitialized scalar variable
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 1d6a2aebae202652feb5964a2d62bdba4e5cc6e4)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=68de9bff924562ba98c1624be9191187c90cf8a6
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun May 26 22:28:04 2024 +0200
avcodec/dxva2: initialize validate
Related: CID1591915 Uninitialized scalar variable
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 2232c4cc8c3d64dec4e4399b58e057f5dbb9ff98)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7e3fb26f91aca25b86e09898c7d44f11718ee92a
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun May 26 22:23:16 2024 +0200
avcodec/dxva2: Initialize ConfigBitstreamRaw
Related: CID1591894 Uninitialized scalar variable
Related: CID1591906 Uninitialized scalar variable
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 489c05b9c3ea7d856b7a81abce247721b3b3d6e8)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=496c4403f864a6edecf027e75abf2bc7c87533d7
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun May 26 22:13:28 2024 +0200
avcodec/dxva2: Initialize dxva_size and check it
Related: CID1591878 Uninitialized scalar variable
Related: CID1591928 Uninitialized pointer read
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c8c59e99295f9ef572b5d6f0fd9075bb2b79acbd)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=6214f7ee12d3fc948c475469491d9a3b28d75e4f
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Jul 11 00:17:39 2024 +0200
avfilter/vf_xfade: Compute w2, h2 with float
Fixes: CID1458148 Result is not floating-point
Fixes: CID1458149 Result is not floating-point
Fixes: CID1458150 Result is not floating-point
Fixes: CID1458151 Result is not floating-point
Fixes: CID1458152 Result is not floating-point
Fixes: CID1458154 Result is not floating-point
Fixes: CID1458155 Result is not floating-point
Fixes: CID1458156 Result is not floating-point
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit b98125e5a52c2f96dc02380f8f7e3bb16752765b)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4781eff8d1286a9b895f427416c423ac30a8c0a7
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Thu Jul 11 00:10:45 2024 +0200
avfilter/vf_v360: Assert that vf was initialized
Maybe helps: CID1504571 Uninitialized scalar variable
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit f802d65de0fe419563705a6846a73b77b020ef14)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=77962054644782ef81f6d00ff3996f1ab56cd038
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Jul 10 23:47:46 2024 +0200
avfilter/vf_tonemap_opencl: Dereference after NULL check
Fixes: CID1437472 Dereference before null check
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit e5c0f56ca09b4cb4ea87a61547218f9c818b52d7)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=aee520fe795ee6ce85a33dab5344f26709584582
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Fri Jul 12 00:28:14 2024 +0200
avfilter/vf_xfade_opencl: Check ff_inlink_consume_frame() for failure
Fixes: CID1458127 Unchecked return value
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 43b62b7e0c85c0a1038ac2bc90ae06597e3ef706)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=629f3f395f48abd9cdf60fd93ea0a6e020d6d2ac
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Jul 13 09:16:48 2024 +0200
avformat/lmlm4: Eliminate some AVERROR(EIO)
Found by code review related to CID732224 Overflowed constant
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 191a685010319cb0d248771574c7c61d76e4eb95)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=849f4423a960608a1ef2ba4b21a9457ff09ba92c
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Aug 7 00:18:53 2024 +0200
avformat/wtvdec: Check length of read mpeg2_descriptor
Fixes: Use of uninitialized value
Fixes:
70900/clusterfuzz-testcase-minimized-ffmpeg_dem_WTV_fuzzer-6286909377150976
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Peter Ross <pr...@xvid.org>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c390234da2e3c7a8884f5592f0b9b4928c482b3e)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9c369ece3a04532e7ea67d730f5c09930f6b5a4f
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Aug 7 00:18:51 2024 +0200
avformat/wtvdec: clear sectors
The code can leave uninitialized holes in the array.
Fixes: use of uninitialized values
Fixes:
70883/clusterfuzz-testcase-minimized-ffmpeg_dem_WTV_fuzzer-6698694567591936
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Peter Ross <pr...@xvid.org>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit c95ea0310468e0a0906fa7d590ff7406c39d6991)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7475b2df34fbff81ef032819b1b736d6e158c464
Author: Kacper Michajłow <kaspe...@gmail.com>
Date: Thu Jun 27 02:40:35 2024 +0200
avcodec/parser: ensure input padding is zeroed
Fixes use of uninitialized value, reported by MSAN.
Found by OSS-Fuzz.
Signed-off-by: Kacper Michajłow <kaspe...@gmail.com>
Fixes:
70852/clusterfuzz-testcase-minimized-ffmpeg_IO_DEMUXER_fuzzer-5179190066872320
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 5dfc0cc84129758b4eab2acdc3e186c3116deacd)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=fd1b4e5b097163284dd72915bfd98d5218ad5513
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sun Aug 4 22:00:35 2024 +0200
avformat/img2dec: Clear padding data after EOF
Fixes: use-of-uninitialized-value
Fixes:
70852/clusterfuzz-testcase-minimized-ffmpeg_IO_DEMUXER_fuzzer-5179190066872320
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Kacper Michajlow <kaspe...@gmail.com>
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 3978e81809a3daf278199849f7bbeacbffb9fa09)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1bc43938532ec751a14937a6bab0c79ee511f556
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Sat Aug 3 19:45:15 2024 +0200
avformat/wavdec: Check if there are 16 bytes before testing them
Fixes: use-of-uninitialized-value
Fixes:
70839/clusterfuzz-testcase-minimized-ffmpeg_dem_W64_fuzzer-5212907590189056
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 79a1cf30d1289f90da682263ba160f6e4a5a7bf1)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3fd58c595affd8c75e7a13a9e09aef70800327fe
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Wed Jul 31 21:43:39 2024 +0200
avcodec/snow: Fix off by 1 error in run_buffer
Fixes: out of array access
Fixes:
70741/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SNOW_fuzzer-5703668010647552
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 06f5ed40f8fceb2542add052c57608121eda2f41)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
URL:
http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=adc077f06a065d9dd3aa35d39f5670d10015e04d
Author: Michael Niedermayer <mich...@niedermayer.cc>
Date: Mon Jun 17 13:31:02 2024 +0200
avcodec/utils: apply the same alignment to YUV410 as we do to YUV420 for
snow
The snow encoder uses block based motion estimation which can read out of
array if
insufficient alignment is used
It may be better to only apply this for the encoder, as it would safe a few
bytes of memory
for the decoder. Until then, this fixes the issue in a simple way.
Fixes: out of array access
Fixes:
68963/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SNOW_fuzzer-4979988435632128
Fixes:
68969/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SNOW_fuzzer-6239933667803136.fuzz
Fixed:
70497/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SNOW_fuzzer-5751882631413760
Found-by: continuous fuzzing process
https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
(cherry picked from commit 58fbeb59e74ac9a4ca81e9bc44141abcbff8ab6d)
Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc>
_______________________________________________
ffmpeg-cvslog mailing list
ffmpeg-cvslog@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-cvslog
To unsubscribe, visit link above, or email
ffmpeg-cvslog-requ...@ffmpeg.org with subject "unsubscribe".
