From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ffmpeg-devel-bounces@ffmpeg.org>
Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org [79.124.17.100])
	by master.gitmailbox.com (Postfix) with ESMTP id 00250454C7
	for <ffmpegdev@gitmailbox.com>; Tue, 31 Jan 2023 11:21:04 +0000 (UTC)
Received: from [127.0.1.1] (localhost [127.0.0.1])
	by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id B68F368BE28;
	Tue, 31 Jan 2023 13:21:02 +0200 (EET)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com
 (mail-vi1eur05olkn2059.outbound.protection.outlook.com [40.92.90.59])
 by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id B727668BDE9
 for <ffmpeg-devel@ffmpeg.org>; Tue, 31 Jan 2023 13:20:56 +0200 (EET)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=NTQecMDkXKrtWg40XnA5LBOwMoGf7XDJnq6vcONvoDVZz3C//YrKCw2HY+LjOr5pu9163wp7P+DmwoIss6s1jQ+MnG0fvQPIlYD+UOZSP9wq3o/82F5l2BGJ5RtTlM051Xz9Hf3K9gD6QtTYdV+MRrWC7q2SxbNtNCIFUpFkwFgrytPYBrAApCnYT2MZNH/YEZ7v0Ix1Qodt+fwiPGsIjThnxwtJtaQx1WoCYnNUhyggeJYStkpYEdaiJLS0uUAFz3IIHLGF9eYmnGS34RKKFlgZBuYwaVhmMYAYcMXMtXaNYEtqJB71VoJ7m2ILLV6QVVVgLePomityvkhT8vcZEg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; 
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
 bh=cfcNpIcwrdolBF0x/xfgn/GqPlnDebYi0eAf60uORRk=;
 b=Dadl55pVi1MA+QwkZ1Tkx6+wY6GFct3EODoHyQBP4dcg6JfityWnoWWt/up9cI0b7wwQKsnWw/S4XMJo42OtkqzPB+Mw5PcvXjrNhiyrWxu54lOPqEKB89PZCsuVI8rTBGSHwEiwYsMQ1RYXXH6izpxsaYEU2AtsqKWEQRMOLZ+j1dH8ulBRmq41nZHZ3DuiL+PlgbLLMJF0rl73oh9ex6jaOoPMqXfJ5f4guS/ZRxM3yk0cZx8DXLb5/1ATdWd2FXdikxmONl3aMFayw+zT/ubV03PVCvC7CrxZujQjFmQZksLSVfLpN7R2HfQZ9SYZzapcF6JBrRIhoP+EjoknUw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;
 dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;
 s=selector1;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=cfcNpIcwrdolBF0x/xfgn/GqPlnDebYi0eAf60uORRk=;
 b=MVB0MfI9VbFo0t/rxyjydkSGR5jg7b0oZrscmZulzId6i6no44oodIyNord4Qx0FvfOxhskEteFWZex6LOaQLk9iP22/nKMA0xJbC4C8Vdp/hYKvUg0l1q6wQgg6HVIhw6QMu15Su3YJgKz9VQghROxdVIQkKFHDv29HQ5j/rE28zXe14PwgMhO419QEFkLDaSd6E20LsTIIlCvWRNXek/C30Y1/OHvIHVI5YvOfUSe1DUaasbGmKNK+DiRhANWKy5hfGEPi5pbyMe8rR96KmGPoD2PMqYH6LBO9Bj41MYZ0IUzDQfprrIy+UhDhZOcGkVYNGxsVCYq5t2lVxOCujw==
Received: from GV1P250MB0737.EURP250.PROD.OUTLOOK.COM (2603:10a6:150:8e::17)
 by DU2P250MB0368.EURP250.PROD.OUTLOOK.COM (2603:10a6:10:27d::16) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6043.38; Tue, 31 Jan
 2023 11:20:55 +0000
Received: from GV1P250MB0737.EURP250.PROD.OUTLOOK.COM
 ([fe80::a65f:2ae7:256a:ab96]) by GV1P250MB0737.EURP250.PROD.OUTLOOK.COM
 ([fe80::a65f:2ae7:256a:ab96%9]) with mapi id 15.20.6002.033; Tue, 31 Jan 2023
 11:20:54 +0000
Message-ID: <GV1P250MB073738CE34E0CB69570B5E5E8FD09@GV1P250MB0737.EURP250.PROD.OUTLOOK.COM>
Date: Tue, 31 Jan 2023 12:21:24 +0100
Content-Language: en-US
To: ffmpeg-devel@ffmpeg.org
References: <20230130234527.13149-1-michael@niedermayer.cc>
 <20230130234527.13149-2-michael@niedermayer.cc>
From: Andreas Rheinhardt <andreas.rheinhardt@outlook.com>
In-Reply-To: <20230130234527.13149-2-michael@niedermayer.cc>
X-TMN: [698BSMUf7sGoAYElFeiQ+h/bn0be6ujf]
X-ClientProxiedBy: FR3P281CA0140.DEUP281.PROD.OUTLOOK.COM
 (2603:10a6:d10:95::12) To GV1P250MB0737.EURP250.PROD.OUTLOOK.COM
 (2603:10a6:150:8e::17)
X-Microsoft-Original-Message-ID: <e02bb488-9958-fcfc-86b2-a64675736b62@outlook.com>
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GV1P250MB0737:EE_|DU2P250MB0368:EE_
X-MS-Office365-Filtering-Correlation-Id: d76e079c-da70-4777-2209-08db037d37e3
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?K0tLMDNsT3VWeUp0bEdIYjg4VnBBUVA3U2pSR3lrcFRCcGcrdTR6anlpUlh4?=
 =?utf-8?B?ei9ENExTRzZyODlDZlNtWllrSEJMS0Q1UHZpQ2l3VDNEdmpQSHdJaDFXNDBQ?=
 =?utf-8?B?TDNSQU1SUFpZWWFKZWtFM1lUVE90VEFIMkU3Q0poalN2ZXhEQXZSajlNdDlm?=
 =?utf-8?B?WjJKTGt2a2J5QnBHbXhaYWJkcEV0UXVYeTZmSGE5VHNHZlRXd1RxZ1JzMEwy?=
 =?utf-8?B?NXh4WWxOYktrU0V2Uks2aWUzY0E4eEJ4dFlFcENTYjQyTWZORnBtSHEyT0hU?=
 =?utf-8?B?V0xlZ1ptVWNCS093TEI0bnFwbmt6bWhLMDliMGVYNzZqYVhZVTRLK1dhWXVP?=
 =?utf-8?B?WHh2U2hTeGVORzBhMzlmL04vRCtiSnFuaWs3clNaRDNLcjVDSWZ0R3FJTGU5?=
 =?utf-8?B?YTFTNEVtYVExZmxmaWFFTjJaS0pveUlmZjFROC9zZ2V2RG9XSEJHSGZNazNn?=
 =?utf-8?B?Vi9nWC9WUFZhMHVBMUVONnl1bVI0QkFDUWUwMzFVK0NNczB6bkJXbER1VWg4?=
 =?utf-8?B?ZWJTMnpDK2pPTDI2ckZVTU1YRWNtKzBlS3RVSXlHOHYxNHJjU2FSQnhQelZP?=
 =?utf-8?B?NXRTTVZzVnVwY1AxTmVaSExOdFVadVloNHdSQjdUak9ndk9CVmZmdVlSMXhl?=
 =?utf-8?B?aEU2TlF4blJCZ05xMlNuZHo5enZxbGdMK29pVGFmZUd1d1NjL3JiazRRd2hS?=
 =?utf-8?B?dE5ickp6clpWY1pveHhKRW5vS21IajJoSEk4N2VtRy82WVBENlhuUE9qS1pJ?=
 =?utf-8?B?WlJtQlM0cUtsMXRxUEVPL1VkeGl3LzUrUWpHTkpJaDNyc3dkSTIxVmZXQTNW?=
 =?utf-8?B?V1VkVW51U2drT1hDM3RzL3lzZUMvUHNJTVc3Ui8vTy96NjY1MGc4WWhNajF0?=
 =?utf-8?B?Q3E3MTE2RmQvTkdKTXY2bjJ5QjVMZmVTc3ppMklrS0l3dk1zSWV4S1h1c2Ux?=
 =?utf-8?B?ZlNWOTVMUGlJTWVHVHF1SHRWR1lSb3Z0SHBubzhXVmdUREF2bllMa1Z4djVS?=
 =?utf-8?B?ejU3SWhoQ2FSWFRHamxiNFhBZnRiM2pLS1MwbVRDRndmS3RLVVNhZEcrQjBH?=
 =?utf-8?B?azVVWUEzWTlKcnV6VHZseWMza2k1QjZvT2Evb3FZNjFoZE5tblMxRk03NlR5?=
 =?utf-8?B?SmM2ekQ1WjZuS3J1c0IwTzhiUm9KMjJDQU8rUDM2WkRPcjNHNm9MU2pGeXFp?=
 =?utf-8?B?OHVWenVxM2FQRU9PU1c1SGU1c3BoSWFIc1EzZE9oVzJYcmVNQ3JmbTZ1amVF?=
 =?utf-8?B?alZaQTV6VWZjNWFDZFpQMFl6K0U2WUZubGllVEt2NUp1b2ZkK2RtaSs3dHV4?=
 =?utf-8?B?MW5MbDFGbnZVMVZnOTlpY2p5UGY3Tk1LbW5BVE5uZHQwTXM2VWJiemdOTnlK?=
 =?utf-8?B?ZG1qQjFabWtGSFNIMjk5dDd4djYzdnFqd2FmM2txbVJXSTF4RWUyVjJkeTlH?=
 =?utf-8?B?djVDODZ2a29INS9IY1dmQ3p5bG9lYUtyTk1TSFMrSEJQR28wUThKamsveUxQ?=
 =?utf-8?B?bkdadVRXc3RERVAzRDAwYmtCVElQUE1IVGdENllsTDJQTmoxSE5WMzI5K1gz?=
 =?utf-8?B?QzM0SEdHdUpmUEhuKytvMWhZZjI2L0ZpWkdRdlVySyt2NitSRk5SRHJKSFVl?=
 =?utf-8?B?RHBEcGt3dXNzRkRaWkNkVDR4UzZPejdvZ0pKcjJtajI1eXRnNW53elNTc1hB?=
 =?utf-8?B?L21JcUdxQXBpN01FdGQrUGhBNHZoUG5mTXZObkRpbWo4ditWWkloa2Uyb0xs?=
 =?utf-8?Q?5CV8kKp5E+5UEnzy9I=3D?=
X-OriginatorOrg: outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d76e079c-da70-4777-2209-08db037d37e3
X-MS-Exchange-CrossTenant-AuthSource: GV1P250MB0737.EURP250.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 31 Jan 2023 11:20:54.8516 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa
X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DU2P250MB0368
Subject: Re: [FFmpeg-devel] [PATCH 2/3] avformat/lafdec: Check if all data
 was read
X-BeenThere: ffmpeg-devel@ffmpeg.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: FFmpeg development discussions and patches <ffmpeg-devel.ffmpeg.org>
List-Unsubscribe: <https://ffmpeg.org/mailman/options/ffmpeg-devel>,
 <mailto:ffmpeg-devel-request@ffmpeg.org?subject=unsubscribe>
List-Archive: <https://ffmpeg.org/pipermail/ffmpeg-devel>
List-Post: <mailto:ffmpeg-devel@ffmpeg.org>
List-Help: <mailto:ffmpeg-devel-request@ffmpeg.org?subject=help>
List-Subscribe: <https://ffmpeg.org/mailman/listinfo/ffmpeg-devel>,
 <mailto:ffmpeg-devel-request@ffmpeg.org?subject=subscribe>
Reply-To: FFmpeg development discussions and patches <ffmpeg-devel@ffmpeg.org>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: ffmpeg-devel-bounces@ffmpeg.org
Sender: "ffmpeg-devel" <ffmpeg-devel-bounces@ffmpeg.org>
Archived-At: <https://master.gitmailbox.com/ffmpegdev/GV1P250MB073738CE34E0CB69570B5E5E8FD09@GV1P250MB0737.EURP250.PROD.OUTLOOK.COM/>
List-Archive: <https://master.gitmailbox.com/ffmpegdev/>
List-Post: <mailto:ffmpegdev@gitmailbox.com>

Michael Niedermayer:
> Fixes: OOM
> Fixes: 54572/clusterfuzz-testcase-minimized-ffmpeg_dem_LAF_fuzzer-4974038870523904
> 
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
> ---
>  libavformat/lafdec.c | 2 ++
>  1 file changed, 2 insertions(+)
> 
> diff --git a/libavformat/lafdec.c b/libavformat/lafdec.c
> index d02b479c4d..b78ec3649c 100644
> --- a/libavformat/lafdec.c
> +++ b/libavformat/lafdec.c
> @@ -208,6 +208,8 @@ again:
>          ret = avio_read(pb, s->data, st_count * st->codecpar->sample_rate * bpp);
>          if (ret < 0)
>              return ret;
> +        if (ret != st_count * st->codecpar->sample_rate * bpp)
> +            return AVERROR_INVALIDDATA;
>      }
>  
>      st = ctx->streams[s->index];

ffio_read()

- Andreas

_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".