From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.ffmpeg.org (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTPS id 8AC9B4C824 for ; Tue, 5 Aug 2025 21:52:54 +0000 (UTC) Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.ffmpeg.org (Postfix) with ESMTP id 06AFC687BEB; Wed, 6 Aug 2025 00:52:50 +0300 (EEST) Received: from mail-ed1-f46.google.com (mail-ed1-f46.google.com [209.85.208.46]) by ffbox0-bg.ffmpeg.org (Postfix) with ESMTPS id B9531687BEB for ; Wed, 6 Aug 2025 00:52:42 +0300 (EEST) Received: by mail-ed1-f46.google.com with SMTP id 4fb4d7f45d1cf-61543b05b7cso4659a12.0 for ; Tue, 05 Aug 2025 14:52:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1754430761; x=1755035561; darn=ffmpeg.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=VkhE1jJUjs/T557J7CGxthKPRqBwE2O/nr3OdcqyCvI=; b=CHc0Fhqb64Zyo12BcSI4toGUmeMXnBkJdqlVef8GURaZCd1whKSQocw7UCiFIwOGt2 q6erqavJd8/8hs3Rb/xVfEsNFqpk7A9WOe5T+uLWBXhu02Asn9rxXpXanFsNTQ5zIynx X/i4rfD7bMnjm3rTdwt+YBxgt939NhToZeAmk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1754430761; x=1755035561; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=VkhE1jJUjs/T557J7CGxthKPRqBwE2O/nr3OdcqyCvI=; b=S4lpe5M2IxZR2FXSCEa8XmilpMO2VLz0Zan3nky3ZIxZo6mf5GizgVqBh3aIw15VGy lbhqRNXctQchL9Hw7x1fvPet3vIMMpt6Pw/NvEBbkJAEZTeAVrpCktbkaqDfvznxv1DU Obtw1EhJEavfMD5uvB6VxX/nq4CkM94tfcCVoE09kHPRT3NFTFtHXUrzPVF2mp/OYxHr ZlKH4qexSQWvcDpjI2Mme4pRTEIvrxmL22d3UBL4rpo6T6IMLyypgxLfS4zBOsyuDYH+ VmPhSNcL/aJl3a+iuHV9aqCAXyv44PUwGt1TeC0ennGgh7XdI+fx+dQWiQgFyBbJrEE5 xfaw== X-Gm-Message-State: AOJu0YxS568v6hzGOd0ALc/lKquOgSMFzxdtGN0Ds1jcXvpv+HdBOugi NCnWx/vQeGD5w/ujZrJ3V9VXCM0ma1AgCNXo6sD1BFm3csI1Gl/9nN8f67BDpn+fg5TijcSLLbR sU8fp555DPWyPx+uGqqEGfxuq881sB7nCLqBZmt/Uj7dMqXclSaQiAbjZ X-Gm-Gg: ASbGncvR1jPkGxiGZOGDb5vX/+xLBQGsILLzU/h6kTjzZFWWQ7Pk1K9drfds7AxfaJU 7ybIYY10CRDRq+mT0yoJ3AQXhzMVoe60OPdGhvL75oqnFU+jSaxCcoA43GJy/As77O+BR2lXNTU CVmetmWaWNZ/Vv6OuY5Gyz9iEQfU0IXNpUAyNQi0p+RS1+5jP9QOrAVm/ont5E8KaH6264lnLJm 7ODRVWK0Kn4bQuNZJ2YvtHTeej059Sw+ctX+Qi8IvKJ X-Google-Smtp-Source: AGHT+IFOJIvhSN0IZJvaYRPLc8SfQJcxmB/EoVZrA02JMvaRO6eCRteIZKjKbKLkU43VPxB3w7Ux7eEGvaPNhqKcuI4= X-Received: by 2002:a05:6402:3082:b0:615:60d2:c013 with SMTP id 4fb4d7f45d1cf-61797e7bc1amr5867a12.3.1754430761160; Tue, 05 Aug 2025 14:52:41 -0700 (PDT) MIME-Version: 1.0 From: Dale Curtis Date: Tue, 5 Aug 2025 14:52:28 -0700 X-Gm-Features: Ac12FXyOtuFPNl3irqXJPoQF6Hi2xcAaVZrCDNk61cRuEpE-oa54xEPOzeTuTJY Message-ID: To: FFmpeg development discussions and patches Content-Type: multipart/mixed; boundary="0000000000004dfdfa063ba53e58" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 Subject: [FFmpeg-devel] [h264] Make ff_h264_build_ref_list stricter with AV_EF_EXPLODE X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" Archived-At: List-Archive: List-Post: --0000000000004dfdfa063ba53e58 Content-Type: text/plain; charset="UTF-8" Don't silently skip errors when AV_EF_EXPLODE is specified. This can lead to out-of-bound reads with ff_put_h264_chroma_mc4_ssse3() when small padding is used with the checked bitstream reader. Signed-off-by: Dale Curtis --0000000000004dfdfa063ba53e58 Content-Type: application/octet-stream; name="h264_stricter_v1.patch" Content-Disposition: attachment; filename="h264_stricter_v1.patch" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_mdz2qvct0 RnJvbSA0NmIyZmExZWMwY2JkMDBjNGZkMzkwOTY2NTYwOGQ3OTc2MDY1NGQwIE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBEYWxlIEN1cnRpcyA8ZGFsZWN1cnRpc0BjaHJvbWl1bS5vcmc+ CkRhdGU6IFR1ZSwgNSBBdWcgMjAyNSAyMTo0NToxOSArMDAwMApTdWJqZWN0OiBbUEFUQ0hdIE1h a2UgZmZfaDI2NF9idWlsZF9yZWZfbGlzdCBzdHJpY3RlciB3aXRoIEFWX0VGX0VYUExPREUKCkRv bid0IHNpbGVudGx5IHNraXAgZXJyb3JzIHdoZW4gQVZfRUZfRVhQTE9ERSBpcyBzcGVjaWZpZWQu IFRoaXMgY2FuCmxlYWQgdG8gb3V0LW9mLWJvdW5kIHJlYWRzIHdpdGggZmZfcHV0X2gyNjRfY2hy b21hX21jNF9zc3NlMygpIHdoZW4Kc21hbGwgcGFkZGluZyBpcyB1c2VkIHdpdGggdGhlIGNoZWNr ZWQgYml0c3RyZWFtIHJlYWRlci4KClNpZ25lZC1vZmYtYnk6IERhbGUgQ3VydGlzIDxkYWxlY3Vy dGlzQGNocm9taXVtLm9yZz4KLS0tCiBsaWJhdmNvZGVjL2gyNjRfcmVmcy5jIHwgNyArKysrKysr CiAxIGZpbGUgY2hhbmdlZCwgNyBpbnNlcnRpb25zKCspCgpkaWZmIC0tZ2l0IGEvbGliYXZjb2Rl Yy9oMjY0X3JlZnMuYyBiL2xpYmF2Y29kZWMvaDI2NF9yZWZzLmMKaW5kZXggNzQ4NDBlNTkwOS4u ZTZlM2FkZjUwMiAxMDA2NDQKLS0tIGEvbGliYXZjb2RlYy9oMjY0X3JlZnMuYworKysgYi9saWJh dmNvZGVjL2gyNjRfcmVmcy5jCkBAIC0zNzAsNiArMzcwLDkgQEAgaW50IGZmX2gyNjRfYnVpbGRf cmVmX2xpc3QoSDI2NENvbnRleHQgKmgsIEgyNjRTbGljZUNvbnRleHQgKnNsKQogICAgICAgICAg ICAgICAgICAgICAgICBpIDwgMCA/ICJyZWZlcmVuY2UgcGljdHVyZSBtaXNzaW5nIGR1cmluZyBy ZW9yZGVyXG4iIDoKICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAibWlzbWF0Y2hpbmcg cmVmZXJlbmNlXG4iCiAgICAgICAgICAgICAgICAgICAgICAgKTsKKyAgICAgICAgICAgICAgICBp ZiAoaC0+YXZjdHgtPmVycl9yZWNvZ25pdGlvbiAmIEFWX0VGX0VYUExPREUpIHsKKyAgICAgICAg ICAgICAgICAgIHJldHVybiBBVkVSUk9SX0lOVkFMSUREQVRBOworICAgICAgICAgICAgICAgIH0K ICAgICAgICAgICAgICAgICBtZW1zZXQoJnNsLT5yZWZfbGlzdFtsaXN0XVtpbmRleF0sIDAsIHNp emVvZihzbC0+cmVmX2xpc3RbMF1bMF0pKTsgLy8gRklYTUUKICAgICAgICAgICAgIH0gZWxzZSB7 CiAgICAgICAgICAgICAgICAgZm9yIChpID0gaW5kZXg7IGkgKyAxIDwgc2wtPnJlZl9jb3VudFts aXN0XTsgaSsrKSB7CkBAIC0zOTIsNiArMzk1LDEwIEBAIGludCBmZl9oMjY0X2J1aWxkX3JlZl9s aXN0KEgyNjRDb250ZXh0ICpoLCBIMjY0U2xpY2VDb250ZXh0ICpzbCkKICAgICAgICAgZm9yIChp bnQgaW5kZXggPSAwOyBpbmRleCA8IHNsLT5yZWZfY291bnRbbGlzdF07IGluZGV4KyspIHsKICAg ICAgICAgICAgIGlmICggICAhc2wtPnJlZl9saXN0W2xpc3RdW2luZGV4XS5wYXJlbnQKICAgICAg ICAgICAgICAgICB8fCAoIUZJRUxEX1BJQ1RVUkUoaCkgJiYgKHNsLT5yZWZfbGlzdFtsaXN0XVtp bmRleF0ucmVmZXJlbmNlJjMpICE9IDMpKSB7CisgICAgICAgICAgICAgICAgaWYgKGgtPmF2Y3R4 LT5lcnJfcmVjb2duaXRpb24gJiBBVl9FRl9FWFBMT0RFKSB7CisgICAgICAgICAgICAgICAgICBh dl9sb2coaC0+YXZjdHgsIEFWX0xPR19FUlJPUiwgIk1pc3NpbmcgcmVmZXJlbmNlIHBpY3R1cmVc biIpOworICAgICAgICAgICAgICAgICAgcmV0dXJuIEFWRVJST1JfSU5WQUxJRERBVEE7CisgICAg ICAgICAgICAgICAgfQogICAgICAgICAgICAgICAgIGF2X2xvZyhoLT5hdmN0eCwgQVZfTE9HX0VS Uk9SLCAiTWlzc2luZyByZWZlcmVuY2UgcGljdHVyZSwgZGVmYXVsdCBpcyAlZFxuIiwgaC0+ZGVm YXVsdF9yZWZbbGlzdF0ucG9jKTsKIAogICAgICAgICAgICAgICAgIGZvciAoaW50IGkgPSAwOyBp IDwgRkZfQVJSQVlfRUxFTVMoaC0+bGFzdF9wb2NzKTsgaSsrKQotLSAKMi41MC4xLjU2NS5nYzMy Y2QxNDgzYi1nb29nCgo= --0000000000004dfdfa063ba53e58 Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe". --0000000000004dfdfa063ba53e58--