From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTP id 1874345ED9 for ; Fri, 16 Jun 2023 18:36:02 +0000 (UTC) Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id C929868C1A1; Fri, 16 Jun 2023 21:35:59 +0300 (EEST) Received: from mail-qk1-f170.google.com (mail-qk1-f170.google.com [209.85.222.170]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 670E468BE95 for ; Fri, 16 Jun 2023 21:35:53 +0300 (EEST) Received: by mail-qk1-f170.google.com with SMTP id af79cd13be357-75ebdd3b077so21997885a.0 for ; Fri, 16 Jun 2023 11:35:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1686940552; x=1689532552; h=content-transfer-encoding:in-reply-to:from:content-language :references:to:subject:user-agent:mime-version:date:message-id:from :to:cc:subject:date:message-id:reply-to; bh=KDtWdLlax3/j1/99MBOJzMpxkKt1ArT2UQQBTp5IY+Y=; b=CMmVWKNR0dLcfxuPLvc7pdS3k9lo4FxO7AJ52TnD2CqJhPSFcKHnq5BelHSziZllCL jEEk7Z7bwW80tyb23c3FZmAwgsCStqxwSOfvTHufapAPjzk5uJVr44HyVgZaAL6hz3JE RWnmSmRPp/G+YOg21LmFbn7BfKh+dB52tpYMeENSBXPu6sZXiM0a/E+P5mBwmRV/3pWu p62gL66obgXtn/kepBI2K7ChkbjW0uHc4dsnd8vs6s01p9I1SXyNMgPPcInwI7lGZchl 4F6pqZ4ti1lU1Ne1DIRFSwpQbNieRv78CVlwJKMdVT1UKfoqi0pP3sKgLbXe0lLRbL3p 4XIA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1686940552; x=1689532552; h=content-transfer-encoding:in-reply-to:from:content-language :references:to:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=KDtWdLlax3/j1/99MBOJzMpxkKt1ArT2UQQBTp5IY+Y=; b=I7aIiSm/Cpw/3efYRq6gIoxmqW4UEOMFO4f/RZQERlBz8JD0c1Y0B6rzkKitG1ywcX GhyBIvNv+QfL//QWDOcsNQwwfInTb9w5R/QVT+YHflXmfq7dxkxLeke9vJ4VldMTkcIq 422rASuVhR2Iv7/9lFIL94i6mwtNSCT5slaBUccaDs13y2Q8guWEBbwbTkvn6r1pomjF Rv41L6V2NpbkCsbAmPP6AQBjhDd2BoBdbEH09PTZ+pvM//2H+4JO/YSQQWVLDmGDEXOY xY+2CvLAyHhifp8jNLgwmVHGj+ORfimsDLCTpZiwtAk+bsT4JjZ4S3UU9/FzLmnSFZ0W 9SXw== X-Gm-Message-State: AC+VfDxSc0pGFmVw0GBIkqrFvo1Pt2PbLKPXrQgtU+XWG/EGV2FtHp3D uSiIr1piJv0c0ZZUt1so5g9RiVg0gpk= X-Google-Smtp-Source: ACHHUZ62os0IYOh1uL/kaKuvHqtO6ZdbJ18E4kZTMou5RXd6zT5FoKvMRPS7H2cOIfSkRZweIKKItg== X-Received: by 2002:a05:620a:3d06:b0:760:6bcb:5448 with SMTP id tq6-20020a05620a3d0600b007606bcb5448mr2543456qkn.0.1686940551772; Fri, 16 Jun 2023 11:35:51 -0700 (PDT) Received: from [172.16.103.28] (c-73-144-192-57.hsd1.mi.comcast.net. [73.144.192.57]) by smtp.gmail.com with ESMTPSA id m9-20020ae9e009000000b007622ce8c7e8sm940172qkk.123.2023.06.16.11.35.50 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 16 Jun 2023 11:35:51 -0700 (PDT) Message-ID: Date: Fri, 16 Jun 2023 14:35:50 -0400 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.12.0 To: "ffmpeg-devel@ffmpeg.org" References: <20230612132256.84549-1-leo.izen@gmail.com> Content-Language: en-US From: Leo Izen In-Reply-To: <20230612132256.84549-1-leo.izen@gmail.com> Subject: Re: [FFmpeg-devel] [PATCH v2] avformat/jpegxl_anim_dec: avoid overrun with jxlp boxes in container X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset="us-ascii"; Format="flowed" Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" Archived-At: List-Archive: List-Post: On 6/12/23 09:22, Leo Izen wrote: > This switches the jpegxl_collect_codestream_header function to use > avcodec/bytestream2, which better enforces barriers, and should avoid > overrunning buffers with jxlp boxes if the size is zero or if the size > is so small the box is invalid. > > Signed-off-by: Leo Izen > --- > libavformat/jpegxl_anim_dec.c | 56 +++++++++++++++++++---------------- > 1 file changed, 30 insertions(+), 26 deletions(-) Will push soon if there's no objections, as this fixes a bug. - Leo Izen _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".