On Wed, Mar 20, 2024 at 02:41:05PM +0800, Zhao Zhili wrote: > > > > On Mar 20, 2024, at 10:19, Michael Niedermayer <mich...@niedermayer.cc> > > wrote: > > > > This reverts commit d3aa0cd16f5e952bc346b7c74b4dcba95151a63a. > > > > Fixes: out of array write > > Fixes: > > 64407/clusterfuzz-testcase-minimized-ffmpeg_BSF_H264_MP4TOANNEXB_fuzzer-4966763443650560 > > > > The bsf code performs 2 iterations, the first counts how much space is > > needed > > than allocates > > and the 2nd pass copies into teh allocated space > > > > The reverted code reallocates sps/pps in the first pass in a data dependant > > way that leaves > > the 2nd pass in a different state then the first > > Sorry for the break. How to access the fuzz report details?
ossfuzz made this one public already https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64407 thx [...] -- Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB Modern terrorism, a quick summary: Need oil, start war with country that has oil, kill hundread thousand in war. Let country fall into chaos, be surprised about raise of fundamantalists. Drop more bombs, kill more people, be surprised about them taking revenge and drop even more bombs and strip your own citizens of their rights and freedoms. to be continued
signature.asc
Description: PGP signature
_______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-requ...@ffmpeg.org with subject "unsubscribe".
