From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTP id 259444C245 for ; Tue, 23 Jul 2024 15:31:04 +0000 (UTC) Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id 7468068D41F; Tue, 23 Jul 2024 18:31:02 +0300 (EEST) Received: from relay2-d.mail.gandi.net (relay2-d.mail.gandi.net [217.70.183.194]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 8A76968BDE1 for ; Tue, 23 Jul 2024 18:30:56 +0300 (EEST) Received: by mail.gandi.net (Postfix) with ESMTPSA id D171340007 for ; Tue, 23 Jul 2024 15:30:55 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=niedermayer.cc; s=gm1; t=1721748656; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=UBaZ1yIIKThoRtMh3T1z+vuBfrlNk2JZ+k46YfGysPs=; b=FDdSQvyMy/FC/IKapqOgg/jKjUk10lQ7k5t/sYNOXYps71YuMLS74PaeDKObRgHomrruP+ 6kgafqsAo7HxyaJeqCXQHlPf9OCPolZ2Q30bn55y1iaqFWqHdeY+o6tWjZ7BDSVDE2j1Kj kQqdQiTOyO5g10aPtatnTBX9pRSgjROBl/QowC8Ko0zRc3ih0G/g/KWfpsbowQGKzji4Kx qJX0MM+yDpe31OM+KPdMeIDDyOKg+3lxrRd/qME9GOAQr++0FU6vABtrCLIl7CfPAuM9hB 5VNagDRgFL58vOLq5ARHPURbwiM0VAgHifS7/1ju691shOX6wIqgjUWLyOxGmg== Date: Tue, 23 Jul 2024 17:30:55 +0200 From: Michael Niedermayer To: FFmpeg development discussions and patches Message-ID: <20240723153055.GX4991@pb2> References: <20240722012237.819610-1-dev@lynne.ee> MIME-Version: 1.0 In-Reply-To: <20240722012237.819610-1-dev@lynne.ee> X-GND-Sasl: michael@niedermayer.cc Subject: Re: [FFmpeg-devel] [PATCH] aacdec: set ac->output_elements upon channel element free X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Content-Type: multipart/mixed; boundary="===============3667934822486319997==" Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" Archived-At: List-Archive: List-Post: --===============3667934822486319997== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="Fvimixt8NQMDp5GN" Content-Disposition: inline --Fvimixt8NQMDp5GN Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Jul 22, 2024 at 03:22:31AM +0200, Lynne via ffmpeg-devel wrote: > The issue is that ac->output_elements is populated from > ac->che, which may be freed, leaving dangling pointers in this > list. >=20 > Should fix clusterfuzz. > --- > libavcodec/aac/aacdec.c | 1 + > 1 file changed, 1 insertion(+) thanks! [...] --=20 Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB When the tyrant has disposed of foreign enemies by conquest or treaty, and there is nothing more to fear from them, then he is always stirring up some war or other, in order that the people may require a leader. -- Plato --Fvimixt8NQMDp5GN Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iF0EABEKAB0WIQSf8hKLFH72cwut8TNhHseHBAsPqwUCZp/MqAAKCRBhHseHBAsP q6CnAJ9LU/iRJ5KLQ0LmxOUfXnHCwzRVZwCdFFUIsvnJ/nNMpNrdtAQZl9t5f58= =zPl5 -----END PGP SIGNATURE----- --Fvimixt8NQMDp5GN-- --===============3667934822486319997== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe". --===============3667934822486319997==--