From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTP id 4FA7940F93 for ; Fri, 2 Aug 2024 22:08:53 +0000 (UTC) Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id B054868D740; Sat, 3 Aug 2024 01:08:50 +0300 (EEST) Received: from mail-qt1-f182.google.com (mail-qt1-f182.google.com [209.85.160.182]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 501BA68D2F5 for ; Sat, 3 Aug 2024 01:08:44 +0300 (EEST) Received: by mail-qt1-f182.google.com with SMTP id d75a77b69052e-44fee2bfd28so1275481cf.1 for ; Fri, 02 Aug 2024 15:08:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1722636522; x=1723241322; darn=ffmpeg.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=s+ltwSTa/LiTnpchWFHysneAwVHQrJInU+HBTdEaW9Y=; b=VdwSe9XzIIWw0KQ2b2hTazsSems5hYYAJUpUJpEaz9Cg3GaQp7SrezlzyvQuuC4ciJ ZijzOkJkMs8UkGi/ij4d9MSr1LWkxjEjpKCklBs4WBywwlDhOdEopx4XibohtgytEzEd K9dkpvFUtSRioZaV5MxYBqKHvqnkH3qLz6HnI= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1722636522; x=1723241322; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=s+ltwSTa/LiTnpchWFHysneAwVHQrJInU+HBTdEaW9Y=; b=gJJ/9AiZ4AY470APVa9mJqyGG/aix+3AeNiT81D46qFGvcydFAXjHOutofLF1DOGX5 rci9gPMXhU4UJLG7wEF/07ZBHqAt/ytJfalIr9iMaaw+/o44xExJZbBzDaOnQjiGBvsg gH+18Y2xy/ZYtmuLFWKZhA2j6j40/j+Bi5WfSnNhLE5xTjZcVmzbfZ5meSlvqxIuJd7e yzcz+BodcGgN9f770Aj5z2buJ12ssXPRhDRE/xVJ7vAFsO8QukGVJu8KWsHwGQ7ZwYn3 KlT1tif1SL5NAcq2oDQB0lJts8ImCSpNLOo8emiS1gSnS6wh74gfJvkUEoWu4lCkBJx8 lBrA== X-Gm-Message-State: AOJu0YwVgHLuBDugN9BQ+YUq+ZZ82yrGgvLucNQ9ke35KkClPTDCdtbc M4dHlOLhKRgnbBBIklu2emALuEBvKn/GH3pi53ZHs5b9C62mbbQg7hFOlS8yrSfybnT/VLnovhe qxAj3EHBWp1vJCmzR75Os05o65iyA2dWp7Hn4T9k0UanDhszKLE9w X-Google-Smtp-Source: AGHT+IEpvukay51GWELxFlLXOb7DTAVHJMVwPK2JslpgE3y6y/L/cGF1BMv6PbMJIn4cpyQ85URfmln7N5hr3z+LUzA= X-Received: by 2002:a05:622a:5b8e:b0:444:dc9a:8e95 with SMTP id d75a77b69052e-4519b45d387mr227361cf.15.1722636521923; Fri, 02 Aug 2024 15:08:41 -0700 (PDT) MIME-Version: 1.0 From: Dale Curtis Date: Fri, 2 Aug 2024 15:08:29 -0700 Message-ID: To: FFmpeg development discussions and patches Content-Type: multipart/mixed; boundary="000000000000f7f58a061eba9177" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 Subject: [FFmpeg-devel] [PATCH] Fix nullptr dereference with invalid encryption metadata. X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" Archived-At: List-Archive: List-Post: --000000000000f7f58a061eba9177 Content-Type: text/plain; charset="UTF-8" Found by fuzzer. Bug: https://crbug.com/356720789 Signed-off-by: Dale Curtis --- libavformat/mov.c | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) --000000000000f7f58a061eba9177 Content-Type: application/octet-stream; name="mov_fuzz_fix_v1.patch" Content-Disposition: attachment; filename="mov_fuzz_fix_v1.patch" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_lzd9arcf0 RnJvbSBhMWM3YWFlOTFiZWY5ODIyNTE1ZjlmZGViZTVjNjI0ZDFmZGYzMDBhIE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBEYWxlIEN1cnRpcyA8ZGFsZWN1cnRpc0BjaHJvbWl1bS5vcmc+ CkRhdGU6IEZyaSwgMiBBdWcgMjAyNCAyMjowNDo0NiArMDAwMApTdWJqZWN0OiBbUEFUQ0hdIEZp eCBudWxscHRyIGRlcmVmZXJlbmNlIHdpdGggaW52YWxpZCBlbmNyeXB0aW9uIG1ldGFkYXRhLgoK Rm91bmQgYnkgZnV6emVyLgoKQnVnOiBodHRwczovL2NyYnVnLmNvbS8zNTY3MjA3ODkKU2lnbmVk LW9mZi1ieTogRGFsZSBDdXJ0aXMgPGRhbGVjdXJ0aXNAY2hyb21pdW0ub3JnPgotLS0KIGxpYmF2 Zm9ybWF0L21vdi5jIHwgOCArKysrKystLQogMSBmaWxlIGNoYW5nZWQsIDYgaW5zZXJ0aW9ucygr KSwgMiBkZWxldGlvbnMoLSkKCmRpZmYgLS1naXQgYS9saWJhdmZvcm1hdC9tb3YuYyBiL2xpYmF2 Zm9ybWF0L21vdi5jCmluZGV4IDEwNTI2OTE5MzYuLjJkZjkwM2EyMDggMTAwNjQ0Ci0tLSBhL2xp YmF2Zm9ybWF0L21vdi5jCisrKyBiL2xpYmF2Zm9ybWF0L21vdi5jCkBAIC04MTQzLDE1ICs4MTQz LDE5IEBAIHN0YXRpYyBpbnQgY2VuY19maWx0ZXIoTU9WQ29udGV4dCAqbW92LCBBVlN0cmVhbSog c3QsIE1PVlN0cmVhbUNvbnRleHQgKnNjLCBBVlBhCiAgICAgICAgICAgICByZXR1cm4gQVZFUlJP Ul9JTlZBTElEREFUQTsKICAgICAgICAgfQogCisgICAgICAgIGVuY3J5cHRlZF9zYW1wbGUgPSBO VUxMOwogICAgICAgICBpZiAoIWVuY3J5cHRpb25faW5kZXgtPm5iX2VuY3J5cHRlZF9zYW1wbGVz KSB7CiAgICAgICAgICAgICAvLyBGdWxsLXNhbXBsZSBlbmNyeXB0aW9uIHdpdGggZGVmYXVsdCBz ZXR0aW5ncy4KICAgICAgICAgICAgIGVuY3J5cHRlZF9zYW1wbGUgPSBzYy0+Y2VuYy5kZWZhdWx0 X2VuY3J5cHRlZF9zYW1wbGU7CiAgICAgICAgIH0gZWxzZSBpZiAoZW5jcnlwdGVkX2luZGV4ID49 IDAgJiYgZW5jcnlwdGVkX2luZGV4IDwgZW5jcnlwdGlvbl9pbmRleC0+bmJfZW5jcnlwdGVkX3Nh bXBsZXMpIHsKICAgICAgICAgICAgIC8vIFBlci1zYW1wbGUgc2V0dGluZyBvdmVycmlkZS4KICAg ICAgICAgICAgIGVuY3J5cHRlZF9zYW1wbGUgPSBlbmNyeXB0aW9uX2luZGV4LT5lbmNyeXB0ZWRf c2FtcGxlc1tlbmNyeXB0ZWRfaW5kZXhdOwotICAgICAgICAgICAgaWYgKCFlbmNyeXB0ZWRfc2Ft cGxlKQorICAgICAgICAgICAgaWYgKCFlbmNyeXB0ZWRfc2FtcGxlKSB7CiAgICAgICAgICAgICAg ICAgZW5jcnlwdGVkX3NhbXBsZSA9IHNjLT5jZW5jLmRlZmF1bHRfZW5jcnlwdGVkX3NhbXBsZTsK LSAgICAgICAgfSBlbHNlIHsKKyAgICAgICAgICAgIH0KKyAgICAgICAgfQorCisgICAgICAgIGlm ICghZW5jcnlwdGVkX3NhbXBsZSkgewogICAgICAgICAgICAgYXZfbG9nKG1vdi0+ZmMsIEFWX0xP R19FUlJPUiwgIkluY29ycmVjdCBudW1iZXIgb2Ygc2FtcGxlcyBpbiBlbmNyeXB0aW9uIGluZm9c biIpOwogICAgICAgICAgICAgcmV0dXJuIEFWRVJST1JfSU5WQUxJRERBVEE7CiAgICAgICAgIH0K LS0gCjIuNDYuMC5yYzIuMjY0Lmc1MDllZDc2ZGM4LWdvb2cKCg== --000000000000f7f58a061eba9177 Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe". --000000000000f7f58a061eba9177--