On Mon, Mar 30, 2020 at 03:26:28PM -0700, John Rummell wrote: > Refactoring my previous patch into smaller items. Starting with the one > found by the Chromium fuzzers.
> oggdec.c | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > ce9987e85bb11b197e37a6320c7efd8c939e1f42 > 0001-libavformat-oggdec.c-Check-return-value-from-avio_re.patch > From 05e96b7a4a895acc5dd0e965c0360d5fdbfe917d Mon Sep 17 00:00:00 2001 > From: John Rummell <jrumm...@chromium.org> > Date: Mon, 30 Mar 2020 14:56:11 -0700 > Subject: [PATCH] libavformat/oggdec.c: Check return value from avio_read() > > If the buffer doesn't contain enough bytes when reading a stream, > fail rather than continuing on with unitialized data. Caught by > Chromium fuzzers (crbug.com/1054229). > --- > libavformat/oggdec.c | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) will apply thx [...] -- Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety -- Benjamin Franklin
signature.asc
Description: PGP signature
_______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-requ...@ffmpeg.org with subject "unsubscribe".
