On 06.12.2015 22:18, Michael Niedermayer wrote: > On Sun, Dec 06, 2015 at 06:56:35PM +0100, Andreas Cadhalpun wrote: >> mjpegdec.c | 11 ++++++++--- >> 1 file changed, 8 insertions(+), 3 deletions(-) >> a294ce9a780fdd710d3661bc201b0c72d30786d3 >> 0001-mjpegdec-consider-chroma-subsampling-in-size-check.patch >> From 7788195340e1d0e1206660f12f003f952da750a6 Mon Sep 17 00:00:00 2001 >> From: Andreas Cadhalpun <andreas.cadhal...@googlemail.com> >> Date: Wed, 2 Dec 2015 21:52:23 +0100 >> Subject: [PATCH] mjpegdec: consider chroma subsampling in size check >> >> If the chroma components are subsampled, smaller buffers are allocated >> for them. In that case the maximal block_offset for the chroma >> components is not as large as for the luma component. >> >> This fixes out of bounds writes causing segmentation faults or memory >> corruption. >> > > LGTM
Pushed. Best regards, Andreas _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org http://ffmpeg.org/mailman/listinfo/ffmpeg-devel
