From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTP id C5D8B405D0 for ; Fri, 25 Feb 2022 20:22:28 +0000 (UTC) Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id B687C68A5BE; Fri, 25 Feb 2022 22:22:25 +0200 (EET) Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-oln040092073094.outbound.protection.outlook.com [40.92.73.94]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 482D3689DAB for ; Fri, 25 Feb 2022 22:22:19 +0200 (EET) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Y1OfmsgCZuYKPz9Wfs57BnizMcC+2XDiEzBgYKnBJZaoTQy6C2LorYbS7YZ84rv8PDImfiJIfbFie60WN1eq/Q0po0BnGT08BHvBKpSMy0ZkMJZCq0ArpmcCb1/tbp7Ourrafiz2EUg9iJLgT9O7+tbAch+ABZBmjycr/PwI1VAfi25ZwCFXdo7kAuQId9uVGgp1ggknAGL60IIw9Ldl2RI/9yMi/KLFbqDTT6rsG34IgN+6847kLfVQGd6rKqNt5YkwUgw0apy4Evxlpg7xihRSuRWe7UxZPi1Ym4iFHCqz+TuIq6pfOJHuD44CCmeJnW8KiP5NTAjV6fxgudtGhw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=QD1WWNywqJV6xT/+HrDcRiMgrz76PZGkJYAbSixa6wk=; b=V1xajs1e4xyaqlthg3DDhdxOs6hGVOW1LixVtDUbHSwMKShritrummQJoV9hVhfbnlPK7Irb5uhJ/pshjZ3bAi4I4m7J/HHk2cEd7/RNmA2Kd9k/pq/5c69/F+XCNCBdC9A8Y3O62EVhM/km/VSMhnOiYnu5yr/xa+/AOpaPhK0fi/KyhZ3PbcVHBnogrA1FMkstR80xypQ3CkOqYd2gtp5nTLDs/d7mvYjFvmwyLWKM/mgRo3jGqeDPQ1ByRSf1AjMSPYOiQzlasuTj3dkiXgSY5eoP7Cm2AmqUq4iTuVNrCDCDdux6f3xiyX3mHdV1VHjlW9ihmeK6kuU/bw+I0g== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QD1WWNywqJV6xT/+HrDcRiMgrz76PZGkJYAbSixa6wk=; b=JOhxgj8Hq6j3Jf5VTuICGu57JvCW0h12fu5YMZ7MF0FqpUDPOashwysUDhLck+VLbalfmm2XNVE2qnRSifGPiov/mjwvdNzBr7f6I83ZKuT0hKjtDAFDvQeFOj6TdciE4tQ2cll7Kc9p0UbzwyzH1iwSmvC6Ka49dlS8r18sqAh2Va/wWQOh/DCLJz6H0n332s9mQ73vXck/Y+hgWYoKWYNvVDk5Ln24rUnDmHNbBLs9/5nXTbboHuADdXRRp8dQi4avtIAv5jzZjTZkN+VwBcVRaIdMDlKxjKVko/1biw3GG+FCIiH6vLqYguR/2Md0SseQOOLo6lnkH+l6dp1pQA== Received: from AM7PR03MB6660.eurprd03.prod.outlook.com (2603:10a6:20b:1c1::22) by AS8PR03MB6808.eurprd03.prod.outlook.com (2603:10a6:20b:29c::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5017.25; Fri, 25 Feb 2022 20:22:17 +0000 Received: from AM7PR03MB6660.eurprd03.prod.outlook.com ([fe80::b8d3:effd:9a3c:4090]) by AM7PR03MB6660.eurprd03.prod.outlook.com ([fe80::b8d3:effd:9a3c:4090%6]) with mapi id 15.20.5017.026; Fri, 25 Feb 2022 20:22:17 +0000 Message-ID: Date: Fri, 25 Feb 2022 21:22:14 +0100 Content-Language: en-US To: ffmpeg-devel@ffmpeg.org References: <20220225152940.26446-1-michael@niedermayer.cc> From: Andreas Rheinhardt In-Reply-To: <20220225152940.26446-1-michael@niedermayer.cc> X-TMN: [yYCFQThKjPOjB1HcgSNr8A2nrM0UoPLj] X-ClientProxiedBy: AS9PR06CA0218.eurprd06.prod.outlook.com (2603:10a6:20b:45e::7) To AM7PR03MB6660.eurprd03.prod.outlook.com (2603:10a6:20b:1c1::22) X-Microsoft-Original-Message-ID: <51a58960-9e4a-1c3d-3bf9-551c08bab314@outlook.com> MIME-Version: 1.0 X-MS-Exchange-MessageSentRepresentingType: 1 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 9ac27750-4fb8-4363-47e5-08d9f89c83a9 X-MS-TrafficTypeDiagnostic: AS8PR03MB6808:EE_ X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?UGdPTjNUMUtnRWNaOUh3TFU3TnY4bGtlMjhTZi9CRE4raC95V3ZOWWxNTzRC?= =?utf-8?B?bHA4elFxaUtiSEdLNHlxelRvRGtqalI4K1VMR2pCZGlGZEJRYkZybUFGMTJJ?= =?utf-8?B?MXUzQUxzTGFIS1F0UXhIdmRRK1EwSm5NL05mUm9WOFFUalpaZUdkZDI5cTBY?= =?utf-8?B?OFNvUVRJalhFMkZnUlExYlExeXJRTlpwTU9sbjA4Z3hCOUdLZmRQWlhicXVr?= =?utf-8?B?UmpJc1BRYmZEanJxNFNOaXBpeFFxZlRzckt1UUdMSEQ3L3M4VjZuT1BmUWtx?= =?utf-8?B?N0VGK0JjRS80eXZLWGx0MlJuL1podDJBYmUrQURndytieDFiREFCTWVRNm9h?= =?utf-8?B?MzdwMHFFL0x4MXBEUy8zT25TVUdYenYyUDF5dU9xNUh2akFScDlQUVRVYlIr?= =?utf-8?B?TnZtbWJiUXhKaDcxNFE0N3Ayb1RHeEdDbXJpbFpRZitMNVZnZ3Bpc2pVTkVZ?= =?utf-8?B?T0hWMnRTQytzR1o2YnRwUnQ5OVlUYUZQTzRWVS9NTFh4RWQ4dHVGM1RzTStW?= =?utf-8?B?WGxUTlZGL2QwM2NvT0RYSER4aHd4ZDNZeVc5UStnVjQ2SllRaE9BcXdadGFr?= =?utf-8?B?M3NaRlJ3cGp0TXFVK1JEcFlybXZUcmR2WEZRSktIYjFRVEpYTk5wOFhhSDdG?= =?utf-8?B?L3M4blVwYllvblNnd1lId25lKzBZVHFlOUJJMjdGZ2pvVWVGeFhwTXA3aDZF?= =?utf-8?B?SCt2bDArSFoxQ2pJb3M3SmRxS2N1RHoxNElmU3psazdyYlVnaFFzTTlDa29j?= =?utf-8?B?aS9kSU91RHZxY0xqVTVSMEV6b09GREZ4UDNBRzFqNEFreGVERzRna0psTmhL?= =?utf-8?B?bTcrSHBlNWplcDFEbUJ1M2dSbVJzQmFEVENDVHVBNHBxTFZ1dnNUMElxUFRV?= =?utf-8?B?UGtNcGVqWVVHaGNUQ24yNkJhNFJaUUlPcmJYQ3NoWDFoWkZZRzJYNGN4Z0Jp?= =?utf-8?B?T0o5c3FHUEVnQ0ZpaXJXTGZIVWxGc1hSMkkzUGJDQ1loVk5lSWhsRWdsQ3pn?= =?utf-8?B?SzBPcVZEUXJrZUswSHVqODBGRUVQYnI1UTByVm1BcGNNM09LV0MxZHk2dG9v?= =?utf-8?B?aTAyay9jbUt6M094WDNjRE8vNlk1Tm03LzlxTXM5Rm42VFU5VWV0bXVvZ2hM?= =?utf-8?B?cFRJRGw2bUVKQ3lvT0IzYm1zKy9GQ3dRVkQrQllLbmdHWmhpeng1QnlZUjhB?= =?utf-8?B?c1VpeExEcDdKR1hwTmx5ZkdZYXc4TzRTdWgwOGdjUGFYVnlOTHpSZnVZSmg0?= =?utf-8?B?QlYyV0IyNmpRaUp6QWg0UFhKdDA3elI5MUR5SUdDcE85RERjZz09?= X-OriginatorOrg: outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 9ac27750-4fb8-4363-47e5-08d9f89c83a9 X-MS-Exchange-CrossTenant-AuthSource: AM7PR03MB6660.eurprd03.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Feb 2022 20:22:17.1985 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000 X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR03MB6808 Subject: Re: [FFmpeg-devel] [PATCH] avcodec/h263dec: Check input size before GEOV/GEOX special case handling X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" Archived-At: List-Archive: List-Post: Michael Niedermayer: > Fixes: Timeout > Fixes: 44921/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEG4_fuzzer-6546588791603200 > > Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg > Signed-off-by: Michael Niedermayer > --- > libavcodec/h263dec.c | 1 + > 1 file changed, 1 insertion(+) > > diff --git a/libavcodec/h263dec.c b/libavcodec/h263dec.c > index e940b7f7c7..56a41f6d05 100644 > --- a/libavcodec/h263dec.c > +++ b/libavcodec/h263dec.c > @@ -702,6 +702,7 @@ frame_end: > > if (s->last_picture_ptr || s->low_delay) { > if ( pict->format == AV_PIX_FMT_YUV420P > + && buf_size*16LL > s->mb_num > && (s->codec_tag == AV_RL32("GEOV") || s->codec_tag == AV_RL32("GEOX"))) { > int x, y, p; > av_frame_make_writable(pict); Does https://ffmpeg.org/pipermail/ffmpeg-devel/2022-February/293358.html not fix the timeout? - Andreas _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".