subject:"\[FFmpeg\-devel\] \[PATCH 4\/6\] avcodec\/aac\/aacdec_lpd\: Limit get_unary\(\)"

Re: [FFmpeg-devel] [PATCH 4/6] avcodec/aac/aacdec_lpd: Limit get_unary()

2025-02-16 Thread Michael Niedermayer

On Sun, Feb 09, 2025 at 03:24:19AM +0100, Michael Niedermayer wrote: > The limit is based on later code storing 32bits > > Fixes: signed integer overflow: 2147483647 + 1 cannot be represented in type > 'int' > Fixes: > 393164866/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AAC_LATM_fuzzer-4

[FFmpeg-devel] [PATCH 4/6] avcodec/aac/aacdec_lpd: Limit get_unary()

2025-02-08 Thread Michael Niedermayer

The limit is based on later code storing 32bits Fixes: signed integer overflow: 2147483647 + 1 cannot be represented in type 'int' Fixes: 393164866/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AAC_LATM_fuzzer-4606798354513920 Found-by: continuous fuzzing process https://github.com/google/