subject:"\[FFmpeg\-devel\] \[PATCH 2\/6\] avcodec\/pngdec\: Check deloco index more exactly"

Re: [FFmpeg-devel] [PATCH 2/6] avcodec/pngdec: Check deloco index more exactly

2023-02-23 Thread Michael Niedermayer

On Thu, Jan 12, 2023 at 12:54:28AM +0100, Michael Niedermayer wrote: > Fixes: out of array access: > Fixes: > 48567/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_PNG_fuzzer-6716193709096960 > > Alternatively it should be possible to limit this to 3 plane RGB 8 /16bit to > ensure the size is

[FFmpeg-devel] [PATCH 2/6] avcodec/pngdec: Check deloco index more exactly

2023-01-11 Thread Michael Niedermayer

Fixes: out of array access: Fixes: 48567/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_PNG_fuzzer-6716193709096960 Alternatively it should be possible to limit this to 3 plane RGB 8 /16bit to ensure the size is what it should be Found-by: continuous fuzzing process https://github.com/googl