From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ffmpeg-devel-bounces@ffmpeg.org>
Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org [79.124.17.100])
	by master.gitmailbox.com (Postfix) with ESMTP id 638ED47C90
	for <ffmpegdev@gitmailbox.com>; Mon, 16 Oct 2023 10:44:57 +0000 (UTC)
Received: from [127.0.1.1] (localhost [127.0.0.1])
	by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id AE21F68C9BB;
	Mon, 16 Oct 2023 13:44:53 +0300 (EEST)
Received: from mail-qt1-f181.google.com (mail-qt1-f181.google.com
 [209.85.160.181])
 by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 0015B68C71C
 for <ffmpeg-devel@ffmpeg.org>; Mon, 16 Oct 2023 13:44:46 +0300 (EEST)
Received: by mail-qt1-f181.google.com with SMTP id
 d75a77b69052e-417fa15f1f9so4116241cf.1
 for <ffmpeg-devel@ffmpeg.org>; Mon, 16 Oct 2023 03:44:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=gmail.com; s=20230601; t=1697453085; x=1698057885; darn=ffmpeg.org;
 h=content-transfer-encoding:in-reply-to:from:references:cc:to
 :content-language:subject:user-agent:mime-version:date:message-id
 :from:to:cc:subject:date:message-id:reply-to;
 bh=Dfxr//xUWGZpJBBBbnqkHsknDXwZwvE494j+FcmggF4=;
 b=Mj3+2grPpF3TqHt4ri+zym7QxikXA3lkLRWGsyUViMzqMslkHCuYYaoMksg/eUqg7S
 9BSx4WjGEKZPl+VWZveFmq7aFrXueRWvFqGDFaQJwFEAnhw1wJxlwm/qI9NJfxnC6m6b
 bqfO3nC79GCr7RgigkWcRmLMy7Mf5t68xRkTcvg9bRXrQQZTmQ1WkV469J1Fr8VweBrQ
 Z3KsPb+ZZgE8PMgdyKNuF7MzTI+TXvfsB+OKVBaVF7otQIGUrQA5alLjGCPBc9jPaW4w
 Oxx7sVBnS3ZPm3Yv6DVz/ZB7jsBaUnxWbPGFR2Ugyp6xvo/dIowvvdiNhaHNZtZMfHi5
 n95w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20230601; t=1697453085; x=1698057885;
 h=content-transfer-encoding:in-reply-to:from:references:cc:to
 :content-language:subject:user-agent:mime-version:date:message-id
 :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
 bh=Dfxr//xUWGZpJBBBbnqkHsknDXwZwvE494j+FcmggF4=;
 b=waMMKrDArzhNKUIt0GRtLlJD8Xq2ZjqCTgoqW/XgX/MQdf7ko0RsofiSWFuUqelMNy
 p2FnRKqNHLrRJ4MzScNJncheCrEQt3XtUtNtf7rt8CegdytfObfj5qhcf0fBaaO+GLDN
 apzAUo0YM2PZUtdzYydGC43m0uj+fMb8y2ZWNNsEMMCtnJ00T1StjHsozDRaDFqeS7i3
 kXBWFM6ZDduL15to/OvglJcdPd7CUA/LTg11H8Wz2P6AgKyv6ZByiKpsYNz9e/RvN9tY
 JSTcNLzRruyX5VKw4vV4Re1pzAx9TKm/mo6q8V4tSv6mGmXNTritqzRpusCeODwABhew
 Ry5g==
X-Gm-Message-State: AOJu0YzuKJ8axN2Qy5fXBeWLd0Mt4jLrMo4GnpwNENTNvP5c33eRYmST
 f8CqK6uINiu0VtAMhtdh2bG0OTycdbj33A==
X-Google-Smtp-Source: AGHT+IEmW7ffsOrBd86yP7fFK1cccFC3KcIdDrm0W//lSEDME473wRblZi8aTOgi8+4RJHmfTXPh8g==
X-Received: by 2002:a05:622a:282:b0:40f:dcda:ea10 with SMTP id
 z2-20020a05622a028200b0040fdcdaea10mr37622177qtw.3.1697453085444; 
 Mon, 16 Oct 2023 03:44:45 -0700 (PDT)
Received: from [192.168.1.35] (c-68-56-149-176.hsd1.mi.comcast.net.
 [68.56.149.176]) by smtp.gmail.com with ESMTPSA id
 jr41-20020a05622a802900b0041a1323352asm2929008qtb.67.2023.10.16.03.44.44
 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
 Mon, 16 Oct 2023 03:44:44 -0700 (PDT)
Message-ID: <47b3da48-ad2c-42db-82e0-e51e759a2866@gmail.com>
Date: Mon, 16 Oct 2023 06:44:43 -0400
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US-large
To: ffmpeg-devel@ffmpeg.org
References: <20231013014959.536776-1-leo.izen@gmail.com>
 <20231015004924.597746-1-leo.izen@gmail.com>
From: Leo Izen <leo.izen@gmail.com>
In-Reply-To: <20231015004924.597746-1-leo.izen@gmail.com>
Subject: Re: [FFmpeg-devel] [PATCH v2] avcodec/jpegxl_parser: fix OOB read
 regression
X-BeenThere: ffmpeg-devel@ffmpeg.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: FFmpeg development discussions and patches <ffmpeg-devel.ffmpeg.org>
List-Unsubscribe: <https://ffmpeg.org/mailman/options/ffmpeg-devel>,
 <mailto:ffmpeg-devel-request@ffmpeg.org?subject=unsubscribe>
List-Archive: <https://ffmpeg.org/pipermail/ffmpeg-devel>
List-Post: <mailto:ffmpeg-devel@ffmpeg.org>
List-Help: <mailto:ffmpeg-devel-request@ffmpeg.org?subject=help>
List-Subscribe: <https://ffmpeg.org/mailman/listinfo/ffmpeg-devel>,
 <mailto:ffmpeg-devel-request@ffmpeg.org?subject=subscribe>
Reply-To: FFmpeg development discussions and patches <ffmpeg-devel@ffmpeg.org>
Cc: Cole Dilorenzo <coolkingcole@gmail.com>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: ffmpeg-devel-bounces@ffmpeg.org
Sender: "ffmpeg-devel" <ffmpeg-devel-bounces@ffmpeg.org>
Archived-At: <https://master.gitmailbox.com/ffmpegdev/47b3da48-ad2c-42db-82e0-e51e759a2866@gmail.com/>
List-Archive: <https://master.gitmailbox.com/ffmpegdev/>
List-Post: <mailto:ffmpegdev@gitmailbox.com>

On 10/14/23 20:49, Leo Izen wrote:
> In f7ac3512f5b5cb8eb149f37300b43461d8e93af3 the size of the dynamically
> allocated buffer was shrunk, but it was made too small for very small
> alphabet sizes. This patch restores the size to prevent an OOB read.
> 
> Reported-by: Cole Dilorenzo <coolkingcole@gmail.com>
> Signed-off-by: Leo Izen <leo.izen@gmail.com>
> ---

Will push soon as it fixes a fuzzer case.

- Leo Izen

_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".