From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.ffmpeg.org (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTPS id 6483F4C172 for ; Wed, 8 Oct 2025 16:13:02 +0000 (UTC) Authentication-Results: ffbox; dkim=fail (body hash mismatch (got b'cR7w922J0/5VyHPZynBBtGDi78pySeYgOEGjluMW5EE=', expected b'2Rx1F8cvX1fTVBzQPb2oGvtHyW5P/jexX4gzs/Fsbo0=')) header.d=ffmpeg.org header.i=@ffmpeg.org header.a=rsa-sha256 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ffmpeg.org; i=@ffmpeg.org; q=dns/txt; s=mail; t=1759939975; h=mime-version : to : date : message-id : reply-to : subject : list-id : list-archive : list-archive : list-help : list-owner : list-post : list-subscribe : list-unsubscribe : from : cc : content-type : content-transfer-encoding : from; bh=cR7w922J0/5VyHPZynBBtGDi78pySeYgOEGjluMW5EE=; b=OpM+XmOlRX45nC7qq+tpA7J+5sppV+L0BQAfywe8BhnU4yh7TbPTmrxD7ljBR+xvzRdft d7/EUDZOCmALw3kL408LUg34CfzFWIopb8MwsLfb5+rCDsezWU91X9R5q9aqtQgNX5aKPSy dm0XfE4VPYG/dX0ngLTi36OlAmuQxrJlirDy2uK3TXsUDUTpKZN46XaX+tWGhhkCb3A3N4q 3IHCXng7uMnMGB9d8kNVEDLzIWPOVpdWvrzil+uqgxWtoPx3yed8JHi05TQNvfPaVvRRfch EqbfkEAKbVSGHBBmWj4V2z5Zu7PYKP5NA+Ta6K131MJ7jYoSOS5kmhmc2Wtg== Received: from [172.18.0.2] (unknown [172.19.0.4]) by ffbox0-bg.ffmpeg.org (Postfix) with ESMTP id 633EF68F2B6; Wed, 8 Oct 2025 19:12:55 +0300 (EEST) ARC-Seal: i=1; cv=none; a=rsa-sha256; d=ffmpeg.org; s=arc; t=1759939962; b=ail4GU4+UU1lQPa5PtYIha4d1wtHc+wHt+0GvsVjG3Yiv03kB87Hq+h+sRFsC30Qw3YEa r7wB9kVVUlqvY9orEkqBKEzTp1zP2TSFIHZx7nh9tq+gXUH+E7Il8ianz+tXOB4SqtWODoc CGO9P4kHocqsCEL+7OQ9U/gjTA2w7AXYUwoiIOsTQyBnDCdfvNJ8shKwnURVaKeqfVoEp9J HhAZDkJXeDQAqJO5sLZH4yKts1dVHuMyeiGaUjyL8ndqqN+Oj3Me5lX1c7JReFbyYDwBZSE /Q7bsBo0aSLXEF3mS0uw/UEL5K/1bESBQrmAJ9aGiha8OtHsQZqrVtDESYEQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=ffmpeg.org; s=arc; t=1759939962; h=from : sender : reply-to : subject : date : message-id : to : cc : mime-version : content-type : content-transfer-encoding : content-id : content-description : resent-date : resent-from : resent-sender : resent-to : resent-cc : resent-message-id : in-reply-to : references : list-id : list-help : list-unsubscribe : list-subscribe : list-post : list-owner : list-archive; bh=jamIDiTVz/fysGMpQqeR1y2p+J0fs7Zh01x5G4/SOJ4=; b=p50t4KpWXuYHjq30E+duaoigT99YlFAXeJgRcLIcXPrgKUk+EcESj9JKQchUfZzlOa3xa 8p2Aj/ucVrBGnEJZQjJSJRfVmCsjNaQVUThdQENFtscvU+5vYYN+mxbTLFEOdomzBOSqzKE BMzcPxMnbpd9pwRkJal8aFJsn0n/nOXBvjAlCpOGFKGUBDXlhhTFsuGU4H8HWn8Uopfv8yX swGO7KyME/qXHGKJRgJkGXoq6fzp2T2vmucwl4KuDdcD6QJBfAwx/xu7LW33tD5NrmtunL8 dAN2OlMNdFZ5ZXTxhaNQ7I63Dwsq867ifhSBTjGIvFeQJzz6yCOeDosOj6gA== ARC-Authentication-Results: i=1; ffmpeg.org; dkim=pass header.d=ffmpeg.org header.i=@ffmpeg.org; arc=none; dmarc=pass header.from=ffmpeg.org policy.dmarc=quarantine Authentication-Results: ffmpeg.org; dkim=pass header.d=ffmpeg.org header.i=@ffmpeg.org; arc=none (Message is not ARC signed); dmarc=pass (Used From Domain Record) header.from=ffmpeg.org policy.dmarc=quarantine DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ffmpeg.org; i=@ffmpeg.org; q=dns/txt; s=mail; t=1759939954; h=content-type : mime-version : content-transfer-encoding : from : to : reply-to : subject : date : from; bh=2Rx1F8cvX1fTVBzQPb2oGvtHyW5P/jexX4gzs/Fsbo0=; b=2vbvyvWPoX+hqrzrwmmqw6Zk9oJN75nGiJ/i16mh4ZS+kz7haPYNOjTyYx8E0Kgv8HPsY zAdDMN1P1PxAA1lf92HNFb4tTBExkRAkN9XVxa9/pr8Qb/YK3raXPog+8btwk/kzXVzIrlb BmKpssFoX4KE7REhSgdmwf3y5+XJo+N12xnbiTa0ft17wkQ/WqsLMOyNPXKTG1mXns8cXwA uVjJbHFvwjPTqDJYzgMY3UakMarIQjOLPZ0/lCoXQhiFDe6nAvIOdaNEAiIBV5nktZ1avQw x/++TuGP+91d1RvcPXSoy85+RkePW+8MuQHI2yXCWQDUnco92SMtIxzyYzig== Received: from be50bb5a3685 (code.ffmpeg.org [188.245.149.3]) by ffbox0-bg.ffmpeg.org (Postfix) with ESMTPS id 790A168F26C for ; Wed, 8 Oct 2025 19:12:34 +0300 (EEST) MIME-Version: 1.0 To: ffmpeg-devel@ffmpeg.org Date: Wed, 08 Oct 2025 16:12:34 -0000 Message-ID: <175993995460.65.12231249567476907866@bf249f23a2c8> Message-ID-Hash: IE6VWILRC7JIBGG2KSNLUPDOPUWOOAGD X-Message-ID-Hash: IE6VWILRC7JIBGG2KSNLUPDOPUWOOAGD X-MailFrom: code@ffmpeg.org X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; header-match-ffmpeg-devel.ffmpeg.org-0; header-match-ffmpeg-devel.ffmpeg.org-1; header-match-ffmpeg-devel.ffmpeg.org-2; header-match-ffmpeg-devel.ffmpeg.org-3; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.10 Precedence: list Reply-To: FFmpeg development discussions and patches Subject: [FFmpeg-devel] [PATCH] avcodec/vvc/dec: Always clear tab in tl_create() (PR #20670) List-Id: FFmpeg development discussions and patches Archived-At: Archived-At: List-Archive: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: From: michaelni via ffmpeg-devel Cc: michaelni Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Archived-At: List-Archive: List-Post: PR #20670 opened by michaelni URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/20670 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/20670.patch Fixes: use of uninitialized memory Fixes: 449549597/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VVC_fuzzer-5600497089445888 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer >>From b8be9468dc6fb2baa880c45c2e89ab04d056c1c8 Mon Sep 17 00:00:00 2001 From: Michael Niedermayer Date: Wed, 8 Oct 2025 17:21:31 +0200 Subject: [PATCH] avcodec/vvc/dec: Always clear tab in tl_create() Fixes: use of uninitialized memory Fixes: 449549597/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VVC_fuzzer-5600497089445888 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer --- libavcodec/vvc/dec.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libavcodec/vvc/dec.c b/libavcodec/vvc/dec.c index b31fceef40..9b738b8a44 100644 --- a/libavcodec/vvc/dec.c +++ b/libavcodec/vvc/dec.c @@ -86,7 +86,7 @@ static int tl_create(TabList *l) for (int i = 0; i < l->nb_tabs; i++) { Tab *t = l->tabs + i; - *t->tab = l->zero ? av_mallocz(t->size) : av_malloc(t->size); + *t->tab = av_mallocz(t->size); if (!*t->tab) return AVERROR(ENOMEM); } -- 2.49.1 _______________________________________________ ffmpeg-devel mailing list -- ffmpeg-devel@ffmpeg.org To unsubscribe send an email to ffmpeg-devel-leave@ffmpeg.org